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I.  INTRODUCTION 


A.  PROBLEM  STATEMENT 


Mobile  computing  is  a  relatively  young  area  of  research  and  is  increasingly 
becoming  commonplace.  There  has  been  relatively  little  work  done  in  mobile 
computing  area  compared  to  the  other  areas  of  computer  science.  Mobile 
computing  involves  the  movement  of  physical  computing  devices  such  as 
laptops,  palmtops,  and  wearable  computers.  There  are  three  aspects  of  physical 
mobility:  wireless  connectivity,  weak  connectivity,  and  weak  energy  autonomy  of 
the  mobile  computing  devices. 

Power  is  one  of  the  most  important  commodities  in  mobile 
communications.  Mobile  elements  rely  on  a  limited  energy  source.  Mobile 
computers  can  only  operate  as  long  as  their  batteries  maintain  power.  While 
battery  technology  improves  over  time,  the  concern  for  power  consumption  will 
not  diminish. 

Mobile  connectivity  is  highly  variable  in  terms  of  performance  and 
reliability.  Communication  bandwidth  is  likely  to  remain  a  major  performance 
bottleneck  in  the  future.  A  mobile  user  may  have  to  rely  on  low-bandwidth 
wireless  connections. 

Wireless  communication  and  its  cost  are  a  major  concern  in  mobile 
computing.  Wireless  communication  is  much  more  expensive  than  wired 
communication  because  of  the  limited  bandwidth.  The  transmission  of  data  over 
wireless  links  is  slow,  unreliable,  and  expensive.  Therefore,  reducing  wireless 
communication  cost  is  a  very  important  issue  in  mobile  computing  environments. 
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One  of  the  goals  of  this  thesis  study  is  to  identify  and  define  wireless 
communication  models  of  mobile  computing  systems  in  order  to  minimize 
wireless  communication  costs. 

A  script  is  a  record  that  consists  of  a  sequence  of  commands  in  a  text  file. 
The  main  reason  for  using  scripts  in  mobile  computing  is  to  delegate  the  mobile 
user’s  tasks  from  a  portable  computer  to  a  network  resource.  The  mobile  user’s 
tasks  are  designed  as  scripts  by  the  portable  computer  and  then  these  tasks  sent 
to  a  mobile  agent  in  order  to  enhance  the  weak  flow  of  mobile  communication. 

A  mobile  agent  is  a  component  of  a  software  program  associated  with  a 
mobile  user.  A  mobile  agent  acts  as  the  mobile  user’s  representative  connected 
to  an  external  server  and  able  to  receive  requested  data  even  if  the  mobile  user’s 
computer  is  disconnected  from  the  external  network.  When  the  mobile  user  is  re¬ 
connected  to  the  external  network,  the  mobile  agent  returns  back  to  the  mobile 
user’s  computer.  Therefore,  mobile  agents  can  save  on  wireless  communication 
costs  and  reduce  the  portable  computer’s  power  consumption. 

Other  goals  of  this  study  are  to  introduce  scripts  and  mobile  agents,  and  to 
explore  their  security  features  in  mobile  computing  environments. 


B.  OBJECTIVE 

The  purpose  of  this  thesis  study  is  to  identify  and  define  wireless 
communication  models  of  mobile  computing  systems  in  order  to  minimize 
wireless  communication  costs,  introduce  scripts  and  mobile  agents,  and  explore 
the  security  features  of  scripts  and  mobile  agents  for  mobile  computing 
environments. 


2 


C.  BENEFIT  OF  STUDY 


This  research  provides  conclusions  and  recommendations  for  the 
development  of  current  mobile  computing  systems. 

The  resulting  recommendations  and  conclusions  also  support  the  Turkish 
and  U.S.  Navies  Research  Centers. 


D.  SCOPE  AND  LIMITATIONS 

Mobile  computing  is  a  broad  topic.  The  focus  of  this  thesis  is  on  wireless 
mobile  computing.  Wireless  communication  techniques  for  minimizing  wireless 
communication  cost,  scripts,  mobile  agents,  and  mobile  agent  security  issues  will 
be  analyzed. 


E.  OVERVIEW 

This  thesis  is  organized  In  six  chapters:  (I)  Introduction,  (II)  Background, 
(III)  Communication  Models  in  Mobile  Computing  systems,  (IV)  Mobile  Code, 
Scripts,  Mobile  Agents,  and  their  Security  Features,  (V)  Using  Mobile  Agents  in 
military  applications,  (VI)  Conclusions  and  Recommendations. 

Chapter  II  is  comprised  of  two  parts.  Part  A  presents  wired  and  wireless 
mobile  computing  environments,  and  introduces  the  components  of  the  mobile 
environment  and  mobility  constraints.  Part  A  also  contains  a  taxonomy  of  the 
current  techniques  for  minimizing  mobile  computing  communication  cost.  Part  B 
presents  mobile  agents  and  their  benefits. 
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Chapter  ill  introduces  communication  models  in  mobile  computing 
systems.  Techniques  presented  for  minimizing  wireless  connection  costs  are: 
caching,  screen  caching,  differencing,  protocol  reduction,  header  reduction,  data 
access  profile,  delayed  writes,  strict  and  loose  reads,  semantic  callbacks  and 
validators,  data  allocation,  data  compression,  data  scheduling,  proxy  process, 
adaptation  strategy,  resource  revocation,  auto  connect/disconnect,  and  smart 
antennas.  This  chapter  also  explains  the  trade-offs  between  these  models. 

Chapter  IV  Is  comprised  of  three  main  parts.  Part  A  presents  mobile  code 
and  its  security  features,  and  explains  the  benefits  of  mobile  code,  programming 
languages  for  mobile  code,  and  mobile  code  security.  Part  A  also  introduces  the 
Firewalling,  Sandbox,  Code  Signing,  and  Proof-Carrying  Code  approaches  for 
providing  assurances  against  hostile  mobile  codes.  Part  B  presents  scripts  and 
script  security,  and  introduces  scripting  languages,  and  the  advantages  of  using 
remote  importable  scripts.  Part  B  also  explains  the  use  of  scripts  in  mobile 
computing  and  the  use  of  cache  memory  with  scripts.  Part  C  presents  mobile 
agents  and  their  security.  Part  C  also  discusses  mobile  agent  concepts,  the 
architecture  of  a  mobile  agent  system,  languages  for  mobile  agents,  and  mobile 
agent  systems. 

Chapter  V  presents  the  use  of  mobile  agents  in  military  applications. 
Chapter  VI  provides  conclusions  and  recommendations. 
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II.  BACKGROUND 


A.  MOBILE  COMPUTING 

The  goal  of  mobile  computing  is  to  provide  mobile  users  with  access  to 
applications  and  basic  communication  services  in  a  mobile  computing 
environment.  Mobile  computing  gives  mobile  users  the  opportunity  to  work  with 
other  computers  from  almost  anywhere.  A  mobile  computing  device  can  be 
connected  to  a  wired  network  with  or  without  wires.  Wired  connections  are  more 
common  among  the  general  population  and  use  modems.  Wireless  connections 
use  radio  links  to  receive  and  send  information.  Wireless  networking  enhances 
the  utility  of  carrying  a  computing  device.  Laptops,  palmtops,  personal  digital 
assistants  (PDA),  and  other  portable  computers  that  easily  connect  to  the 
Internet  and  commercial  databases  are  becoming  increasingly  popular. 


1.  Mobile  Computing  Environment 

La  Porta,  T.F.,  Sabnani,  K.K.,  and  Gitlin,  R.D.  define  mobile  computing 
environment  in  [Ref.  34]  shown  in  Figure  2.1 . 

The  mobile  computing  environment  includes  both  wired  and  wireless 
network  connectivity.  Mobile  users  can  operate  on  the  various  environments 
such  as  an  office,  home,  hotel,  airplane,  or  automobile.  Mobile  users  may 
communicate  through  a  wired  network  connection  or  via  wireless  access,  and 
must  contend  with  variable  bandwidths,  different  link  characteristics,  and  end- 
devices  with  varying  displays  and  processing  power. 
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Figure  2.1:  Mobile  Computing  Environment.  [From  Ref.  34] 
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a.  Wired  Mobile  Computing  Environment 

In  a  wired  office  environment,  network  connectivity  is  achieved 
through  a  Local  Area  Network  (LAN).  Local  communication  is  inexpensive,  and 
mobile  users  have  access  to  powerful,  high-quality  local  file  servers  over  wired 
networks.  Local  file  servers  are  powerful  computers  that  support  high- 
performance  applications.  Local  Area  Networks  provide  highly  available  services 
and  high-bandwidth  communications. 

In  a  home  environment,  end-devices  are  high-powered  personal 
computers  (PC).  Network  connections  are  made  via  telephone  lines  using 
modems.  Telephone  connection  is  expensive,  and  therefore,  users  are  limited 
primarily  by  expense  as  opposed  to  decreased  computing  capabilities. 

A  mobile  user  in  a  hotel  room  uses  a  laptop,  palmtop,  or  PDA  as  an 
end  device  and  a  telephone  line  for  network  connection.  In  a  hotel  or  home 
environment,  end-devices  are  used  while  disconnected  from  the  network.  In  a 
hotel  environment,  storage  space  and  local  processing  power  are  less  abundant 
than  In  an  office  or  home  environment. 


b.  Wireless  Mobile  Computing  Environment 

Mobile  users  that  may  operate  in  an  indoor  or  in  a  wide  area 
outdoor  environment  are  connected  to  a  wired  network  by  wireless  links.  The 
bandwidth  of  the  wireless  links  can  be  much  less  than  that  of  the  wired  networks. 

Within  a  building,  the  connectivity  can  be  through  a  wireless  LAN. 
In  this  environment,  end-devices  will  be  small  with  limited  memoiy  and  power. 
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Therefore,  protocols  and  applications  must  be  designed  to  operate  at  a  low 
bandwidth. 


In  a  wide  area  outdoor  environment,  a  mobile  user  can 
communicate  through  wireless  communication  networks.  Data  rates  in  wireless 
networks  are  low.  Wireless  services  are  expensive  and  have  high  error  rates 
and  frequent  disconnections.  Therefore,  the  amount  of  communication  and  the 
type  of  information  exchanged  with  the  end  devices  must  be  limited.  Mobile 
users  should  be  able  to  operate  in  a  disconnected  mode  and  to  reconnect  to  the 
network  periodically  due  to  the  limiting  factors  of  wide-area  wireless  connectivity. 


c.  Architecture  of  a  Mobile  Computing  Environment 

Mirghafori,  N.,  and  Fontaine,  A.  describe  the  major  elements  of  a 
mobile  environment  in  [Ref.  3],  shown  in  Figure  2.2.  The  major  elements  of  a 
mobile  computing  environment  are  the  following: 

•  Mobile  Host:  A  mobile  host  is  a  mobile  computing  device  with 
a  cache,  disk,  and  small  display  screen  (i.e.,  a  laptop  or  a 
palmtop).  The  mobile  host  is  capable  of  wireless 
communication  and  is  battery  operated. 

•  Home  Server:  A  home  server  is  the  server  on  which  the  mobile 
host  is  originally  registered,  and  serves  as  the  permanent 
storage  mechanism  of  the  mobile  host  files.  The  home  server 
may  physically  own  a  mobile  host’s  pages  or  just  have  the 
capability  to  retrieve  the  pages  from  other  servers. 
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Figure  2.2:  Architecture  of  a  Mobile  Computing  Environment.  [From  Ref.  3] 
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•  Mobile  Support  Station:  A  mobile  support  station  is  a  server 
that  provides  services  such  as  cache,  RPC  requests  and  retries, 
etc.,  to  the  mobile  host.  The  mobile  support  station 
communicates  with  the  mobile  hosts  within  its  cell  via  radio 
waves.  A  mobile  host  registers  with  a  mobile  support  station 
upon  entering  the  broadcast  range  of  the  mobile  support  station. 

•  Base  Station;  A  base  station  broadcasts  data  messages  and 
does  not  play  a  direct  role  in  file  access.  The  base  station  is 
conceptually  merged  with  the  mobile  support  station.  [Ref.  3] 


2.  Constraints  of  Mobile  Computing 

The  purpose  of  mobile  computing  is  to  provide  a  mobile  user  with  the 
capacity  to  communicate  with  networks  from  all  over  the  world.  Mobile 
computing  must  contend  with  the  constraints  of  both  portable  computer  hardware 
and  wireless  communication.  The  weak  flow  of  information  over  wireless  links 
and  weak  energy  autonomy  due  to  limited  battery  power  are  the  major 
constraints  involved  in  mobile  computing. 

The  key  concerns  with  mobile  computing  are  low  bandwidth  on  wireless 
networks  and  network/application  performance.  Therefore,  mobile  computing 
systems  and  applications  attempt  to  limit  the  aggregate  bandwidth  used  on 
wireless  links.  Network  and  application  performance  include  reasonable 
throughput,  response  time,  latency  in  the  presence  of  low-bandwidth,  wireless 
links,  and  fast  connection  establishment  in  the  presence  of  mobility. 

The  mobile  computing  environment  differs  from  a  fixed  computing 
environment  in  many  ways.  First,  mobile  users  access  networks  over  wireless 
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links.  Therefore,  mobile  users  will  have  access  to  lower  bandwidth  and 
experience  higher  error  rates  than  wired  network  users.  Second,  the  wireless 
links  are  unreliable  in  terms  of  availability.  Mobile  users  may  often  not  be  within 
the  coverage  area  of  a  network.  Therefore,  networks  and  applications  must 
support  mobile  users  that  intermittently  disconnect  from  a  network.  Third,  mobile 
users  will  not  be  stationary  whether  accessing  the  network  by  either  wired  or 
wireless  means.  Finally,  mobile  computing  devices  will  likely  have  limited 
processing  and  power  capabilities  as  compared  to  desktop  computers.  [Ref.  34] 

Satyanarayanan,  M.  describes  the  constraints  of  mobility  in  [Ref.  2]. 
According  to  Satyanarayanan,  mobile  computing  is  characterized  by  four 
constraints: 

•  Mobile  computing  eiements  are  resource-poor  relative  to  the 
static  elements.  For  a  given  cost  and  level  of  technology, 
considerations  of  weight,  power,  size,  and  ergonomics  negatively 
impact  computational  resources  such  as  processor  speed,  memory 
size,  and  disk  capacity.  While  mobile  computing  elements,  such  as 
processor,  memory  size,  and  disc  capacity,  will  improve,  they  may 
always  be  Inferior  to  static  elements. 

•  Mobility  is  inherently  hazardous.  In  addition  to  security  concerns, 
mobile  computers  are  more  vulnerable  to  loss,  theft,  or  damage. 

•  Mobile  connectivity  is  highly  variable  in  terms  of  performance  and 
reliability.  Outdoors,  a  mobile  client  may  have  to  rely  on  a  low- 
bandwidth  wireless  network  with  gaps  in  coverage. 

•  Mobile  computing  elements  rely  on  a  finite  energy  source.  While 
battery  technology  will  likely  improve  over  time,  concern  for  power 
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consumption  will  not  diminish.  In  order  for  power  consumption  to  be 
fully  effective  sensitivity  to  its  use  must  span  many  levels  of  hardware 
and  software. 

These  constraints  are  not  artifacts  of  current  technology,  but  are  intrinsic 
to  mobility.  Together,  they  complicate  the  design  of  mobile  information  systems 
and  require  us  to  rethink  traditional  approaches  to  information  access.  [Ref.  2] 


3.  Mobile  Computing  Communication  and  Its  Cost 

Wire-based  network  hardware  and  software  can  be  expensive.  Cost 
depends  on  the  number  of  computers  in  the  network  and  the  features  of  the 
network.  The  cost  of  a  wired  network,  which  consists  of  ten  computers  and  a 
printer,  may  range  from  $2,500  to  $35,000.  Wired-based  networks  bring  some 
complexities,  such  as  training  network  users,  training  administrators,  and  adding 
new  software  or  hardware  to  the  network,  to  support  changes  in  network 
requirements.  These  complexities  result  in  additional  cost.  In  addition,  a  single 
failure  may  cause  the  entire  network  to  breakdown.  It  is  possible  to  design 
networks  to  be  fault  tolerant  so  that  they  are  resistant  to  breakdowns.  Fault 
tolerance  requires  having  duplicates  of  critical  hardware.  Therefore,  fault 
tolerance  can  also  Increase  the  cost  of  building  and  maintaining  a  wired-based 
network. 

The  annual  cost  of  owning  and  running  a  mobile  computing  device  for 
business  use,  including  planning,  installation,  support,  and  disposal,  can  run  up 
to  $20,000.  A  company  keeps  its  mobile  computing  devices  an  average  of  18 
months  to  three  years,  so  the  cost  of  maintaining  a  mobile  computing  device 
actually  dwarfs  the  initial  price  tag.  The  high  cost  of  equipping  and  supporting  a 
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mobile  device  or  support  staff  can  erode  the  advantages  conferred  by  their 
mobility. 

Mobile  users  have  online  access  to  a  large  number  of  databases  via 
wireless  links.  For  example,  mobile  users  can  access  airline  schedules,  prices  of 
financial  instruments,  traffic  and  weather  information,  etc.  The  potential  market 
for  wireless  access  is  billions  of  dollars  annually  in  access  and  communication 
charges. 

Wireless  communication  is  more  expensive  than  wired  communication 
because  of  the  limited  bandwidth.  For  example,  cellular  telephone  call  costs 
about  35  cents  per  minute.  As  another  example,  RAM  Mobile  Data  Corporation 
charges  8  cents  per  data  message.  Wireless  communication  can  become  very 
expensive  for  mobile  users  who  perform  hundreds  of  transactions  per  day. 
Consequently,  it  is  important  to  minimize  wireless  communication  cost. 

Mirghafori,  N.  and  Fontaine,  A.  explain  why  mobile  computing 
communication  and  Its  costs  are  a  major  concern  in  mobile  computing  in  [Ref.  3]. 
The  authors  identify  the  following  issues: 

•  Wireless  communication  links  are  slow  and  unreliable:  on  a  long-haul 
radio  link,  the  transmission  rate  is  19.2  Kbps;  radio  links  tend  to  have 
more  background  noise  than  “hardwire”  links. 

•  For  a  mobile  host,  it  is  more  expensive  to  send  data  than  to  receive 
data  for  the  following  reasons: 

(1)  As  with  cellular  telephone  service,  one  pays  more 
service  fees  to  send  data  than  to  just  receive  data. 
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(2)  For  a  mobile  host,  sending  a  message  consumes  more 
power  than  receiving  a  message.  In  other  words,  the 
communication  cost  between  the  mobile  support  station 
and  the  mobile  host  is  asymmetric. 

•  The  dollar  cost  of  sending  information  over  a  wireless  network  is  high. 

•  The  overhead  of  connection  setup  and  teardown  is  high.  Therefore, 
fewer  longer  conversations  are  better  than  many  short  conversations. 

•  There  is  a  high  contention  on  the  low-bandwidth  wireless  link  when 
many  mobile  hosts  try  to  talk  to  a  mobile  support  station. 

One  of  the  most  Important  commodities  in  mobile  computing 
communications  is  power.  A  mobile  computing  device  can  operate  as  long  as  its 
battery  maintains  power.  The  trend  in  mobile  computing  is  moving  towards  more 
communication  dependent  activities  with  mobile  users  switching  from  traditional 
wired  Ethernet  communication  to  wireless  communication. 

Today  mobile  computing  devices  are  as  powerful  as  desktop  personal 
computers.  This  improved  technology  has  been  made  possible  by  advances  in 
memory,  processor,  and  integration  technologies.  However,  battery  technology 
has  not  made  similar  improvements.  Energy  density  of  batteries  has  only 
doubled  in  the  last  35  years  whereas  processor  speed  keeps  doubling  every  18 
months.  The  slow  improvement  in  battery  lifetime  shows  that  energy 
consumption  will  be  one  of  the  most  important  factors  in  designing  systems  and 
wireless  networking  support  for  mobile  computing  devices  in  the  future. 

A  new  type  of  battery  powered  by  a  cathode  made  of  an  unusual  form  of 
iron  absorbing  more  electrons,  boosts  the  battery’s  power  and  provides  50 
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percent  more  power.  The  new  batteries  rely  on  “super  iron”  because  of  their 
enhanced  ability  to  store  a  charge  and  provide  more  power.  Researchers  have 
also  developed  a  rechargeable  version,  which  uses  the  super-iron  cathode  and 
an  anode  of  the  same  material  as  In  other  rechargeable  batteries  [Ref.38]. 

Some  software  and  hardware  techniques  have  been  proposed  to  reduce 
the  power  consumption  of  a  mobile  computing  device  during  operation. 
Software-level  solutions  focus  on  modulating  the  power  used  by  the  mobile 
transmitter  during  active  communication,  whereas  hardware-level  techniques 
concentrate  on  non-communication  components  such  as  processors,  disks,  and 
displays.  The  goal  of  these  techniques  Is  to  predict  when  the  mobile  computing 
device  wiii  not  be  used  and  to  suspend  it  for  those  periods. 


4.  Taxonomy  of  the  Current  Techniques/Models  for  Minimizing 
Mobile  Computing  Communication  Cost 

Table  2.1  presents  the  current  techniques/models  for  minimizing  mobile 
computing  communication  cost.  The  following  presents  a  summary  of  the 
papers,  which  have  been  published  on  the  costs  of  mobile  computing 
communication: 
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Table  2.1 :  Taxonomy  of  the  current  techniques  /  models,  which  have  been  used  in 
mobile  computing  environments  for  minimizing  mobile  communication  cost. 


16 


a.  Larry  Francis,  “Mobile  computing:  a  fact  in  your  future,  ” 
paper  presented  at  the  annual  international  conference  on  Computer 
documentation,  pp.  63-67, 1997.  [Ref.  1]: 

Mobility  means  reduced  connection  speed  and  increased 
connection  cost.  Technology  to  the  rescue  from  high  communication  cost  is 
cheaper  and  faster  data. 

In  this  paper,  Francis  proposes  the  following  techniques  for 
reducing  mobile  communication  cost: 

•  Data  compression, 

•  TCP  header  reduction, 

•  Screen  caching, 

•  Screen  differencing, 

•  Queuing  requests, 

•  Latency  reduction, 

•  Protocol  reduction, 

•  Auto  connect  /  disconnect. 

The  author  describes  how  mobile  computing  technology  interacts 
with  some  of  the  latest  developments  in  computer  technology  such  as  network 
computing,  Java,  and  palmtops.  With  network  computing,  mobile  computer  has 
little  internal  data  or  Intelligence.  Mobile  users  might  use  a  network  computer 

I 

built  into  their  airplane  seat  or  hotel  room.  Network  computing  needs  a  cheap, 
fast  way  to  download  programs  and  data  to  users,  but  mobile  use  makes 
downloading  awkward  and  expensive.  The  caching  and  efficiency  techniques 
applied  to  Web  pages  also  support  the  downloading  and  re-use  of  Java  applets. 
Personal  digital  assistants  such  as  palmtops  and  wearable  computers  are  similar 
to  laptops  but  are  much  smaller.  These  computers  make  tradeoffs  between  size, 
weight,  and  function,  thus  sharing  the  similar  advantages  and  suffering  from  the 


similar  shortcomings.  Although  personal  digital  assistants  serve  a  different 
population  than  laptops,  they  comprise  an  important  part  of  the  mobile  computing 
environment.  Palmtops  are  unlikely  to  compute  significantly  with  laptops,  but 
interest  in  them  may  increase  the  mobile  use  environment. 

b.  Satyanarayanan,  M.,  “Fundamental  Challenges  in  Mobile 
Computing,”  paper  presented  at  the  1^  annual  ACM  symposium  on 
Principles  of  distributed  computing,  pp.  1-7,  1996.  [Ref.  2]: 

Satyanarayanan  attempts  to  answer  the  question,  “What  is  unique 
and  conceptually  different  about  mobile  computings  The  paper  describes  a  set 
of  constraints  intrinsic  to  mobile  computing,  and  examines  the  impact  of  these 
constraints  on  distributed  systems  design. 

Satyanarayanan  proposes  an  adaptation  strategy,  because 
according  to  the  author,  adaptation  is  the  key  to  mobility.  Adaptation  insulates 
users  from  the  vagaries  of  mobile  environments  by  using  local  resources  to 
reduce  communication.  His  research  explores  two  different  approaches  to 
adaptation,  application-transparent  and  application-aware. 

Finally,  the  author  describes  opportunities  for  future  research  in 
mobile  computing:  caching  metrics,  semantic  callbacks  and  validators,  resource 
revocation,  analysis  of  adaptation,  and  global  estimation  from  local  observations. 

c.  Mirghafori,  N.;  Fontaine,  A.,  “A  design  for  file  access  in 
mobile  environment,”  paper  appears  in  Mobile  Computing  Systems  and 
Applications,  pp.  57-62,  8-9  December  1994.  [Ref.  3]: 

The  need  to  reduce  communication  cost  is  needed  in  the  mobile 
environment  because  transmission  of  data  over  radio  links  is  slow,  expensive. 
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and  unreliable.  Providing  data  consistency  is  crucial  because  many  mobile 
applications  are  database  applications,  which  rely  on  consistent  data.  In  this 
paper,  the  authors  propose  a  design  for  a  file  access  mechanism  that  is  specific 
to  a  mobile  environment.  The  two  main  design  goals  are  to  reduce 
communication  cost  and  to  provide  data  consistency.  They  propose  to  minimize 
the  amount  of  wireless  communication  by  extensive  use  of  caching,  profile 
information,  a  proxy  process,  delayed  writes,  and  making  use  of  loose-reads. 
Data  consistency  is  provided  by  using  proxy  services,  a  centralized  data 
manager  with  callbacks,  and  strict-reads. 

Mighafori  and  Fontaine  concentrate  their  design  in  reducing  the 
effects  of  the  narrow  bandwidth  with  the  rationale  that  bandwidth  is  more  likely  to 
remain  a  major  performance  bottleneck  in  the  future.  Communication  between 
the  mobile  host  and  the  mobile  support  station  Is  kept  at  a  minimum  to  achieve  a 
reasonable  response  time  through-  extensive  use  of  caching  and  liberal 
delegation  of  tasks  to  the  proxy.  Caching  combined  with  loose-read  capability 
can  reduce  network  traffic  significantly,  since  many  of  the  mobile  users’  reads  will 
be  performed  locally.  The  authors  conclude  that  the  proxy  combined  with 
caching  is  the  most  significant  means  for  achieving  reduction  in  communication 
costs. 


d.  Prasad  Sistia,  A.;  Wolfson,  O.;  Yixiu  Huang, 
“Minimization  of  communication  cost  through  caching  in  mobiie 
environments,”  paper  appears  in  Paraiiei  and  Distributed  Systems,  IEEE 
Transactions  on,  pp.  378-390,  April  1998.  [Ref.  4]: 

In  this  paper,  the  authors  present  and  analyze  various  static  and 
dynamic  data  allocation  methods  in  order  to  minimize  mobile  computing 
communication.  An  allocation  method  determines  whether  the  allocation  scheme 
changes  over  time  or  not.  In  a  static  allocation  method,  the  allocation  scheme 
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does  not  change  over  time,  whereas,  in  a  dynamic  scheme  it  does.  The  authors 
analyze  two  static  allocation  methods  using  the  one-copy  scheme  and  the  two- 
copies  scheme  as  well  as  a  family  of  dynamic  data  allocation  methods.  These 
methods  are  suggested  by  the  need  to  select  the  allocation  scheme  according  to 
the  read/write  ratio.  The  family  consists  of  all  the  methods  that  allocate  and  de¬ 
allocate  a  copy  of  a  data  item  to  the  mobile  computer  based  on  a  sliding  window 
of  k  requests.  The  allocation  scheme  is  dynamically  adjusted  according  to  the 
relative  frequencies  of  reads  and  writes.  The  algorithms  in  this  family  are 
distributed,  and  they  are  implemented  by  software  residing  on  both  the  mobile 
and  stationary  computers. 

The  authors’  objective  is  to  optimize  the  communication  cost 
between  a  mobile  computing  device  and  the  stationary  computer  that  stores  the 
online  database.  Their  analysis  is  performed  in  two  cost  models.  One  is 
connection  (or  time)  based,  as  in  cellular  telephones,  where  the  user  Is  charged 
per  minute  of  cellular  telephone  connection.  The  other  is  message  based,  as  in 
packet  radio  networks,  where  the  user  is  charged  per  message.  Their  analysis 
addresses  both  the  average  case  and  the  worst  case  for  determining  the  best 
allocation  method. 


e.  Kravets,  R;  Krishan,  P.,  “Power  Management 
Techniques  for  Mobile  Communication,”  paper  presented  at  the  4“  annual 
ACM/iEEE  international  conference  on  Mobile  computing  and  networking, 
pp.  157-168,  1998.  [Ref.  5]: 

In  the  mobile  computing  environment,  power  is  a  limited  resource. 
Therefore,  users  of  mobile  communication  devices  need  to  be  conscious  of  this 
limitation  and  conserve  energy.  The  research  presented  in  this  article  focuses  on 
software-level  techniques  for  managing  the  mobile  host’s  communication  device 
through  suspension  of  the  device  during  idle  periods  in  communication.  Kravets 
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and  Krishnan  present  a  novel  transport-level  protocol  for  managing  the 
suspend/resume  cycle  of  the  mobile  host’s  communication  device  in  an  effort  to 
minimize  power  consumption. 

The  authors  target  on  the  transport  layer,  where  they  provide  a  set 
of  mechanisms  that  allow  communication  to  be  suspended  and  resumed. 
Kravets  and  Krishnan  assume  a  model  where  the  mobile  host  is  communicating 
with  the  rest  of  the  network  through  a  base  station.  This  base  station  may  be  a 
proxy,  or  it  may  be  the  connection  point  for  end-to-end  communication  with  other 
hosts.  Often,  dealing  with  mobility  does  not  fit  into  the  standard  seven-layer 
model.  By  exposing  power  management  techniques  to  the  application,  the 
authors  provide  a  system-level  solution  aimed  at  end-to-end  communication. 
The  authors  concentrate  on  the  communication  between  the  mobile  host  and  the 
base  station,  and  for  clarity  assume  that  all  communication  to  and  from  the 
mobile  host  is  directed  through  one  specific  base  station. 

The  protocol  achieves  power  savings  by  selectively  choosing  short 
periods  to  suspend  communications  and  shut  down  the  device.  The  protocol 
also  manages  the  important  task  of  queuing  data  for  future  delivery  during 
periods  of  communication  suspension,  and  decides  when  to  restart 
communication. 


f.  Lauzac,  S.  W.;  Chrysanthis,  P.  K.;  Tjoa,  A.  M.;  Wagner, 
R.R.,  “Programming  views  for  mobiie  database  ciients,”  this  paper  appears 
in  Database  and  Expert  Systems  Appiications,  proceedings, 
intemationai  Workshop  on,  pp.  408-413, 26-28  August  1998.  [Ref.  6]: 

Within  a  database  mobile  environment,  cached  data  on  mobile 
clients  can  take  the  form  of  materialized  views.  In  order  to  efficiently  maintain 
materialized  views  while  respecting  disconnected  operations,  the  authors  present 
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a  mechanism  in  the  form  of  a  proxy  within  the  fixed  network.  This  proxy  can 
assume  different  roles  in  order  to  provide  a  customizable  client-oriented  “data 
warehouse”  mechanism  which  they  call  the  view  holder. 

A  view  holder  is  not  static  or  generic,  and  maintains  a  state  with 
respect  to  the  individual  mobile  clients  it  supports.  When  a  view  holder  is 
required  to  maintain  a  particular  view,  the  view  specification  can  be  seen  as  a 
program  specification.  A  view  holder  can  be  programmed  to  maintain  multiple 
versions  of  a  view  in  order  to  compensate  for  the  data  changes  that  occurred  to 
the  materialized  views  that  were  used  during  disconnection  and  present  how  the 
view  holder  allows  for  efficient  interactions  with  the  data  sources  as  well  as  the 
mobile  hosts.  The  authors  extend  the  SQL  create  view  statement  and  show  how 
it  can  be  used  to  program  the  view  holders. 

This  paper  addresses  the  problem  of  caching  and  maintaining  data 
within  a  mobile  environment  in  the  form  of  a  materialized  view.  The  authors’ 
main  contribution  is  the  development  of  the  view  holder,  a  mechanism  that 
maintains  customizable  versions  of  cached  views  specified  by  an  extension  of 
SQL. 


g.  Chan  B.  Y.;  Si,  A;  Leong,  H.  V.,  “Cache  Management  for 
Mobile  Databases:  Design  and  Evaluation,”  this  paper  appears  in  Data 
Engineering,  proceedings.,  14”'  International  Conference  on,  pp.  54-63,  23- 
27  February  1998.  [Ref.  7]: 

Communication  between  mobile  users  and  database  servers  in  a 
mobile  computing  environment  is  via  wireless  channels  with  low  bandwidth  and 
low  reliability.  A  mobile  user  could  cache  its  frequently  accessed  database  items 
into  its  local  storage  in  order  to  improve  performance  of  database  queries  and 
availability  of  database  items  for  query  processing  during  disconnection. 
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In  this  paper,  the  authors  describe  a  mobile  caching  mechanism  for 
a  mobile  environment  utilizing  a  point-to-point  communication  paradigm.  In 
particular,  they  investigate  issues  of  caching  granularity,  coherence  strategy,  and 
replacement  policy  of  mobile  caching. 

The  authors  present  a  framework  for  caching  mechanism  as  one 
way  to  improve  data  access  performance  in  a  mobile  environment.  The  caching 
mechanism  is  illustrated  and  implemented  on  an  object-oriented  database  model. 
The  authors  show  that  page-based  caching  is  not  suitable  in  a  mobile  context 
and  propose  three  different  caching  granularities,  namely,  attribute  caching, 
object  caching,  and  hybrid  caching.  The  authors  also  show  that  conventional 
cache  coherence  and  replacement  schemes  are  not  effective,  and  propose 
modified  strategies  that  adapt  to  object  access  patterns. 

h.  Wolfson,  O.;  Yixiu  Huang,  “Competitive  anaiysis  of 
caching  in  distributed  databases,”  paper  appears  in  Paraiiei  and 
Distributed  Systems  iEEE  Transactions  on,  pp.  391-409,  Aprii  1998.  [Ref.  8]: 

Wolfson  and  Huang  introduce  a  model  for  evaluating  performance 
data  allocation  and  replication  algorithms  in  distributed  databases.  The  model  is 
comprehensive  in  the  sense  that  it  accounts  for  input  output  cost,  for 
communication  cost,  and  because  of  reliability  considerations,  for  limits  on  the 
minimum  number  of  copies  of  the  object. 

In  modern  distributed  databases,  particularly  in  mobile 
environments,  processors  will  dynamically  store  objects  in  their  local  database 
and  will  relinquish  them.  Caching  is  a  particular  form  of  dynamic  allocation  in 
which  a  processor  that  reads  an  object  saves  a  copy  of  that  object  and,  thus,  it 
joins  the  allocation  scheme.  The  main  goal  of  this  paper  focus  on  caching  that  is 
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discussGd  in  th©  largsr  context  of  dynamic  allocation.  The  authors  study  caching 
in  a  peer-to-peer  environment  rather  than  a  client  server  environment. 

In  this  paper,  the  authors  analyze  the  cost  of  servicing  a  set  of 
read-write  requests  for  a  replicated  object.  This  set  of  requests  is  usually 
ordered  by  some  concurrency-control  mechanism  such  that  each  read  request 
accesses  the  most  recent  version  of  the  object.  The  cost  of  servicing  a  read  or 
write  request  depends  on  the  allocation  scheme  of  the  object,  namely,  the  set  of 
processors  that  store  the  most  recent  version  of  the  object  in  their  local 
databases.  The  authors  Introduce  an  algorithm  for  automatic  dynamic  allocation 
of  replicas  to  processors. 

The  allocation  scheme  of  an  object  is  either  dynamic  or  static, 
namely,  it  changes  as  the  read-write  requests  are  executed  or  It  remains  fixed. 
The  reason  for  changing  the  allocation  scheme  Is  that  the  larger  the  allocation 
scheme,  the  smaller  the  cost  of  an  average  read-request  and  the  bigger  the  cost 
of  an  average  write  request.  Thus,  in  a  read-intensive  environment,  a  large 
allocation  scheme  is  mandated,  whereas,  in  a  write-intensive  environment,  a 
small  allocation  scheme  Is  mandated. 

/.  Barbara,  D.;  Imieli,  T.,  “Sleepers  and  workaholics: 
caching  strategies  in  mobile  environments,”  ACM  SIGMOD  Record,  v.  23, 
No.  2,  pp.  1-12,  June  1994.  [Ref.  9]: 

Caching  of  frequently  accessed  data  items  is  an  effective  technique 
that  reduces  communication  on  the  narrow  bandwidth  wireless  channel. 
However,  cache  invalidation  strategies  are  severely  affected  by  the 
disconnection  and  mobility  of  clients.  The  server  may  no  longer  know  which 
clients  are  currently  residing  under  its  cell  and  which  are  not. 
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In  this  paper,  Barbara  and  Imieli  propose  a  taxonomy  and  analyses 
of  different  cache  invalidation  methods,  and  study  the  impact  of  disconnection 
time  on  performance.  The  authors  show  that  caching  is  a  widely  used  technique, 
which  may  lead  to  Improvement  in  overall  throughput  by  making  it  possible  to 
answer  queries  locally  without  competing  for  the  scarce  wireless  bandwidth. 

The  authors  determine  that  for  the  mobile  computers,  which  are 
often  disconnected,  the  best  cache  invalidation  strategy  is  based  on  signatures 
previously  used  for  efficient  file  comparison.  On  the  other  hand,  for  the  mobile 
computers  that  are  connected  most  of  the  time,  the  best  cache  invalidation 
strategy  is  based  on  the  periodic  broadcast  of  changed  data  Items. 

/.  Yon  Dohn  Chung;  Myoung  Ho  Kim,  “OEM:  a  scheduling 
method  for  wireless  broadcast  data,”  paper  appears  in  Database  Systems 
for  Advanced  Applications,  Proceedings.,  ^  International  Conference  on, 
pp.  135-142,  19-21  April  1999.  [Ref.  10]: 

In  mobile  distributed  systems,  the  data  on  air  can  be  accessed  by  a 
large  number  of  clients.  In  this  paper,  the  authors  describe  the  way  clients 
access  the  wireless  broadcast  data  with  short  latency.  They  define  and  analyze 
the  problem  of  wireless  data  scheduling. 

Chung  and  Kim  investigate  a  wireless  broadcast  data  scheduling 
method  that  finds  a  broadcast  schedule  of  data  for  reducing  the  access  time  of 
the  queries  issued  by  mobile  clients.  They  give  a  method  named  OEM,  which 
constructs  the  broadcast  schedule  by  expanding  each  query’s  data  set.  The 
proposed  method  OEM  reduces  the  access  time  by  efficient  scheduling  wireless 
broadcast  data.  The  authors  study  the  performance  of  the  OEM  within  several 
environmental  parameters.  OEM  effectively  constructs  a  wireless  broadcast 
schedule  resulting  in  a  20  percent  reduction  in  access  time. 
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k.  Flinn,  J,;  Satyanarayanan,  M.,  “PowerScope:  a  tool  for 
profiling  the  energy  usage  of  mobile  applications,  "paper  appears  in  Mobile 
Computing  Systems  and  Applications,  Proceedings.,  Second  IEEE 
Workshop  on,  pp.  2-10, 25-26  February  1999.  [Ref.  1 1]: 

Energy  is  a  critical  resource  for  mobile  computers.  In  this  article, 
Flinn  and  Satyanarayanan  describe  the  design  and  implementation  of 
PowerScope,  a  tool  for  profiling  energy  usage  by  applications.  PowerScope 
maps  energy  consumption  to  program  structure,  in  much  the  same  way  that  CPU 
profilers  map  processor  cycles  to  specific  processes  and  procedures. 

The  authors’  approach  combines  hardware  instrumentation  with  the 
kernel  software  support  to  measure  the  current -level  energy  usage  to  perform 
statistical  sampling  of  system  activity.  Post-processing  software  maps  the 
sample  data  to  program  structure  and  produces  a  profile  of  energy  usage  by 
process  and  procedure. 

Attributing  costs  in  detail  enables  attention  to  be  focused  quickly  on 
problem  areas  in  code.  Therefore,  the  authors’  most  important  design 
consideration  is  to  enable  PowerScope  to  gather  sufficient  information  to  produce 
a  detailed  picture  of  system  activity,  as  the  usefulness  of  a  profiling  tool  is  directly 
related  to  how  definitively  it  assigns  costs  to  specific  application  events. 

l.  Barbara,  D.,  “Mobile  computing,  and  databases-a 
survey,”  paper  appears  in  Knowledge  and  Data  Engineering,  IEEE 
Transactions  on,  pp.  108-117,  January-February  1999.  [Ref.  12]: 

Barbara  surveys  the  impact  that  mobile  computing  has  had  in  the 
area  of  data  management.  The  author  first  analyzes  each  of  the  distinct  features 
of  mobile  computing  and  how  they  affect  the  implementation  of  databases  for 
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mobile  computers,  creating  new  opportunities  for  research.  These  distinct 
features  are  asymmetry  in  the  communications,  frequent  disconnections,  power 
limitations,  and  screen  size.  Each  one  of  these  features  has  an  impact  on  how 
data  can  be  effectively  managed  in  a  system  with  mobile  clients. 

The  communication  asymmetry,  along  with  the  restriction  in  power 
that  the  mobile  units  have,  make  the  model  of  broadcasting  data  to  the  clients 
instead  of  waiting  for  the  clients  to  request  specific  data  items,  an  attractive 
proposition.  This  is  called  data  dissemination.  The  limited  bandwidth  and  the 
pattern  of  frequent  disconnections  have  a  clear  impact  on  how  transaction 
management  is  implemented  and  how  data  consistency  is  guaranteed  in  the 
mobile  environment.  Screen  and  power  limitations  have  an  impact  on  the  kind  of 
interfaces  that  can  be  implemented  for  data  browsing  and  querying. 

m.  Chakrabarti,  S.;  Dutta,  G.,  “A  Low  Deviation  Digitai 
Moduiation  Scheme  for  Mobiie  Communication,” paper  appears  in  Personai 
Wireiess  Communication,  iEEE  internationai  Conference  on,  pp.  193-197, 
17-19  February  1999.  [Ref.  13]: 

In  this  paper,  the  authors  propose  a  modulation  scheme  that  can  be 
applied  to  severely  band-limited  channels  such  as  land-mobile  and  satellite- 
mobile  radio  channels. 

The  authors  also  describe  the  modulation  and  demodulation 
strategy,  discuss  the  performance  of  the  demodulation  technique,  and  state  the 
possible  decision  strategies  that  can  provide  the  best  results  for  the  use  of 
bandwidth.  Chakrabarti  and  Dutta  conclude  that  the  modulation  scheme  utilizes 
the  correlation  property  of  the  data  sequence  and  produces  continuous-phase, 
bandwidth-efficient  waveforms  with  constant  envelope. 
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n.  Goyal,  A.;  Sundareshan,  M.  K.,  “Performance  analysis  of 
a  person-based  mobility  management  scheme  for  PCN,”  paper  appears  in 
Performance,  Computing  and  Communications  Conference,  IEEE 
International,  pp.  97-103, 10-12  February  1999.  [Ref.  14]: 

Mobility  management  is  an  issue  of  central  and  unique  importance 
in  wireless  communication  systems.  Factors  that  determine  the  efficiency  of  a 
mobility  management  scheme  include  the  number  of  times  that  locations  need  to 
be  updated,  the  amount  of  overhead  data  that  represents  mobility-related 
information,  and  storage  mechanisms  that  allow  for  fast  storage  and  retrieval  of 
this  information. 

In  this  paper,  the  authors  outline  a  mobility  management  scheme 
that  provides  a  globally  unique  personal  number.  A  mobile  computer  can  be 
viewed  as  an  extension  of  a  fixed  system  and  its  location  changes  with  time.  A 
geography-independent  personal  number  provides  this  extension.  They  perform 
an  analysis  of  the  scheme  by  using  query  and  update  operations  as  the  metrics 
for  determining  average  call  delay  and  controlling  data  storage  and  transmission 
requirements.  This  analysis  provides  a  tool  for  determining  network 
management  requirements  in  a  person-based  number  scheme.  A  person-based 
numbering  scheme  provides  an  improved  mobility  management  in  personal 
communication  networks. 

o.  Tsoulos,  G.  V.,  “Smart  antennas  for  mobile 
communication  systems:  benefits  and  challenges,”  paper  appears  in 
Electronics  &  Communication  Engineering  Journai,  pp.  84-94,  Aprii  1999. 
[Ref.  15]: 

This  paper  provides  an  overview  of  the  potential  benefits  and 
challenges  of  applying  smart-antenna  technology  to  mobile  communication 
systems. 
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The  author  presents  an  overview  of  smart  antennas  in  terms  of  key 
characteristics,  options,  challenges,  and  benefits,  in  the  context  of  current,  but 
also  with  a  view  towards  future  generation  personal  communication  systems. 

Tsoulos  notes  that  communication  systems  will  exploit  different 
advantages  or  mixtures  of  advantages  offered  by  smart  antennas  depending  on 
the  maturity  of  the  underlying  system.  The  author  concludes  that  technology 
advanced  systems  will  be  able  to  benefit  most  from  smart  antenna  systems. 
Communication  costs  can  be  reduced  by  exploiting  the  range  extension 
capabilities  of  smart  antennas.  The  author  states  that  costs  can  be  further 
decreased  by  avoiding  extensive  use  of  small  cells  and  instead  exploiting  the 
capability  of  smart  antennas  to  increase  capacity  where  there  is  a  demand  for 
increased  capacity. 


p.  Bhagwat,  P.;  Bisdikian,  C.;  Korpeoglu,  /.;  Krisha,  A.; 
Naghshineh,  M.,  “System  Design  Issues  for  Low-Power,  Low-Cost  Short 
Range  Wireless  Networking,”  paper  appears  In  Personal  Wireless 
Communication,  IEEE  International  Conference  on,  pp.  264-268,  17-19 
February  1999.  [Ref.  16]: 

In  this  paper,  the  authors  present  the  design  of  a  short-range 
wireless  networking  system  called  BlueSky  developed  at  IBM  Research  to 
address  the  challenges  of  providing  low-cost,  low-power,  indoor  wireless 
networking  to  handheld  devices.  The  authors  show  that  the  optimization 
objectives  for  short-range  indoor  wireless  systems  are  quite  different  from  those 
of  traditional  cellular  wireless  systems.  The  authors  also  argue  that  in  the  next 
millennium  the  primary  optimization  criteria  for  the  design  of  short-range  wireless 
systems  will  shift  from  the  traditional  spectral  efficiency  towards  battery  lifetime 
and  cost. 
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r.  earlier,  D.;  Trane,  P.,  “Task  delegation  model  assigned 
to  mobile  computing,”  paper  appears  in  Information,  Communications  and 
Signal  Processing,  1997.  ICICS.,  Proceedings  of  1997  International 
Conference  on,  v.  1,  pp.  220-224, 9-12  September  1997.  [Ref.  17]: 

This  paper  aims  at  describing  task  role  and  delegation  even  if  the 
task  Is  not  completely  and  precisely  defined  before  the  sending  phase  of  tasks. 
One  of  the  main  reasons  for  using  scripts  in  mobile  computing  Is  to  be  able  to 
delegate  tasks  from  a  portable  terminal  to  a  workstation  with  more  resources.  An 
initial  proposal  is  to  assign  each  user  to  a  representation  agent  on  the  wired 
network.  Tasks  designed  as  a  script  are  sent  to  this  agent  to  take  advantage  of 
network  opportunities.  The  missing  information  on  the  workstation  is  Imported 
from  distant  servers  through  remote  script  import  protocols.  The  authors  present 
cache  architecture  to  make  this  operation  as  efficient  as  possible.  In  addition, 
the  authors  also  discuss  security  features  according  to  the  main  characteristics  of 
the  different  kinds  of  scripts,  namely  personalized,  certified,  and  protected. 

In  this  paper,  Carlier  and  Trane  represent  a  general  description  and 
implementation  of  scripts  to  prove  the  feasibility  of  the  mobile  computing  system. 
As  mobile  computers  are  obviously  less  efficient  than  powerful  computers 
located  on  a  wired  network  and  wireless  communications  are  not  as  easy  and 
cheap,  it  is  important  to  introduce  scripts  on  the  wired  network,  which  can  help 
reducing  wireless  traffic.  Scripts  are  considered  as  task  executors. 
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B. 


MOBILE  AGENTS 


A  mobile  agent  is  a  software  program  that  accepts  tasks  from  the  mobile 
user,  to  help  overcome  drawbacks  associated  with  the  mobile  computing 
environment. 

Mobile  agents  can  navigate  independently  over  heterogeneous  networks 
submitted  by  mobile  users  to  fulfill  tasks.  Mobile  agents  are  special  mobile  code^ 
entities  and  are  composed  of  code  and  explicit  data  elements.  Mobile  agents  are 
very  useful  for  mobile  computing.  A  mobile  agent  is  an  interface  between  the 
mobile  user  and  external  networks  acting  as  the  mobile  user’s  representative. 
The  mobile  agent  is  always  connected  to  the  related  external  network  server  and 
is  able  to  receive  requested  data  even  If  the  mobile  user’s  computer  is 
disconnected.  After  a  mobile  agent  is  submitted,  a  mobile  user  can  be 
disconnected  from  the  network.  When  it  reaches  its  owner  computer,  the  mobile 
agent  is  capable  of  interacting  with  external  network  servers,  moving  to  another 
network  sen/er,  and  resuming  execution. 

Lange,  D.B.  and  Oshima,  M.  identify  the  following  main  benefits  of  using 
mobile  agents  In  [Ref.  1 8]: 

•  Mobile  agents  reduce  the  network  load.  Mobile  agents  allow  users 
to  package  a  conversation  and  dispatch  it  to  a  destination  host  where 
interactions  take  place  locally.  Mobile  agents  are  also  useful  when 
reducing  the  flow  of  raw  data  in  the  network.  When  very  large  volumes 
of  data  are  stored  at  remote  hosts,  that  data  can  be  processed  in  its 
locality  rather  than  transferred  over  the  network. 


'  Mobile  code  denotes  the  programs  that  are  executed  on  foreign  computers.  Mobile  codes  can 
be  written  by  anyone  and  execute  on  any  machine  that  runs  a  browser.  Examples  of  mobile 
codes  are  Java  Applets  and  Postscript. 
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•  Mobile  agents  overcome  network  latency.  Critical  real-time 
systems,  such  as  robots  in  manufacturing  processes,  need  to  respond 
in  real  time  to  changes  in  their  environments.  Controlling  such 
systems  through  a  factory  network  of  substantial  size  involves 
significant  latencies,  and  for  critical  real-time  systems,  such  latencies 
are  unacceptable.  Mobile  agents  offer  a  solution,  because  they  can  be 
dispatched  from  a  central  controller  to  act  locally  and  execute  the 
controller’s  directions  without  delay. 

•  Mobile  agents  encapsulate  protocols.  When  data  is  exchanged  in  a 
distributed  system,  each  host  owns  the  code  that  implements  the 
protocols  needed  to  properly  code  outgoing  data  and  interpret 
incoming  data.  However,  as  protocols  evolve  to  accommodate  new 
requirements  for  efficiency  or  security,  it  is  cumbersome  if  not 
impossible  to  upgrade  protocol  code  properly.  As  a  result,  protocols 
often  become  a  legacy  problem.  On  the  other  hand,  mobile  agents 
can  move  to  remote  hosts  to  establish  communication  based  on 
protocols. 

•  Mobile  code  executes  synchronously  and  autonomously.  Mobile 
devices  often  rely  on  expensive  or  fragile  network  connections.  Tasks 
requiring  a  continuously  open  connection  between  a  mobile  device  and 
a  fixed  network  are  usually  neither  economically  nor  technically 
feasible.  To  solve  this  problem,  tasks  can  be  embedded  into  mobile 
agents,  which  can  then  be  dispatched  into  the  network.  After  being 
dispatched,  the  agents  become  independent  of  the  process  that 
created  them  and  can  operate  asynchronously  and  autonomously. 

•  Mobile  agents  adapt  dynamically.  Mobile  agents  can  sense  their 
execution  environment  and  react  autonomously  to  changes.  Multiple 
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mobile  agents  have  the  unique  ability  of  distributing  themselves  among 
the  hosts  in  the  network  to  maintain  the  optimal  configuration  for 
solving  a  particular  problem. 

•  Mobile  agents  are  naturally  heterogeneous.  Network  computing  is 
fundamentally  heterogeneous,  often  from  both  hardware  and  software 
perspectives.  A  heterogeneous  network  includes  computers  and 
devices  from  various  manufacturers  and  transmits  data  using  more 
than  communications  protocols.  Mobile  agents  provide  optimal 
conditions  for  a  seamless  system  integration,  because  they  are 
generally  computer  and  transport-layer  independent. 

•  Mobile  agents  are  robust  and  fault-tolerant.  A  mobile  agents’  ability 
to  react  dynamically  to  unfavorable  situations  and  events  makes  it 
easier  to  build  robust  and  fault-tolerant  distributed  systems.  If  a  host  is 
being  shut  down,  all  agents  relying  on  that  machine  are  warned  and 
given  time  to  dispatch  and  continue  their  operation  on  another  host  in 
the  network. 

•  E-commerce.  Mobile  agents  are  well  suited  for  e-commerce.  A 
commercial  transaction  may  require  real-time  access  to  remote 
resources,  such  as  stock  quotes  and  perhaps  even  agent-to-agent 
negotiation.  Different  agents  have  different  goals  and  Implement  and 
exercise  different  strategies  to  accomplish  them. 

•  Personal  Assistance.  Mobile  agents’  ability  to  execute  on  remote 
hosts  makes  them  suitable  assistants  to  perform  tasks  in  the  network 
on  behalf  of  their  creators.  Remote  assistants  operate  independently 
of  their  limited  network  connectivity;  their  creators  can  even  turn  off 
their  computers. 


33 


•  Secure  Brokering.  The  parties  can  let  their  mobile  agents  meet  on  a 
mutually  agreed  secure  host  where  collaboration  takes  place  without 
the  risk  of  the  host  siding  with  one  the  visiting  agents. 

•  Distributed  Information  Retrievai.  Instead  of  moving  large  amounts 
of  data  to  the  search  engine  so  the  search  engine  can  create  search 
indexes,  the  agent  creator  can  dispatch  mobile  agents  to  remote 
information  sources  where  mobile  agents  locally  create  search  indexes 
that  can  later  be  shipped  back  to  the  system  of  origin. 

•  Telecommunication  Networks  Services.  The  support  and 
management  of  advanced  telecommunication  services  are 
characterized  by  dynamic  network  reconfiguration  and  user 
customization.  The  physical  size  of  these  networks  and  the  strict 
requirements  under  which  they  operate  call  for  mobile  agent 
technology  to  function  as  the  glue  that  keeps  the  systems  flexible  yet 
effective. 

•  Workflow  applications  and  groupware.  The  nature  of  workflow 
applications  includes  support  for  the  flow  of  information  among 
coworkers.  Mobile  agents  are  especially  useful  here,  because  in 
addition  to  mobility,  they  provide  a  degree  of  autonomy  to  the  workflow 
Item. 

•  Monitoring  and  notification.  An  agent  can  monitor  a  given 
Information  source  without  being  dependent  on  the  system  from  which 
it  originates.  Agents  can  be  dispatched  to  wait  for  certain  kinds  of 
information  to  become  available. 
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•  Information  dissemination.  Mobile  agents  embody  the  so-called 
Internet  push  model.  Agents  can  disseminate  information,  such  as 
news  and  automatic  software  updates,  for  vendors. 

•  Parallel  processing.  If  a  computation  requires  so  much 
processor  power  that  it  must  be  distributed  among  multiple  processors, 
an  infrastructure  of  mobile  agent  hosts  can  be  a  plausible  way  to 
allocate  the  related  processes.  [Ref.  18] 


35 


THIS  PAGE  INTENTIONALLY  LEFT  BLANK 


36 


tii.  COMMUNICATION  MODELS 


A.  COMMUNICATION  MODELS  IN  MOBILE  COMPUTING  SYSTEMS 

1 .  Caching 

In  a  mobile  computing  environment,  the  limited  power  of  the  mobile 
computing  device  and  the  low  bandwidth  of  the  wireless  communication  link  are 
the  major  constraints  of  wireless  mobile  operation.  Focusing  on  the  low 
bandwidth  constraints  leads  to  higher-end  mobile  computing  devices  with 
caches. 

Caching  plays  a  very  important  role  in  mobile  computing.  Caching  can 
alleviate  the  limitations  on  the  performance  and  availability  of  the  weakly 
connected  mobile  operation.  Caching  of  data  in  a  mobile  computing  environment 
limits  communication  and  Improves  the  performance  and  availability  of  services 
such  as  browsing  applications.  Effective  caching  can  significantly  reduce 
wireless  network  traffic.  Mobile  users  can  access  data  more  quickly  if  that  data  is 
cached.  Caching  can  also  speed  data  access  by  filtering  out  approximately  fifty 
percent  of  the  message  traffic. 

In  the  mobile  computing  environment,  one  utilizes  a  point-to-point 
communication  paradigm,  referred  to  as  mobile  caching.  The  main  goal  of 
mobile  caching  is  to  achieve  a  reasonable  response  time  by  keeping  the 
communication  between  the  mobile  computing  device  and  the  mobile  support 
station  at  a  minimum.  Caching  minimizes  wireless  communication  traffic 
because  mobile  users  perform  read  operations  locally. 
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A  caching  mechanism  is  characterized  by  Its  caching  granularity,  cache 
coherence  strategy,  and  cache  replacement  policy,  and  each  of  these  are 
defined  as  follows: 

Caching  Granularity.  There  are  three  different  levels  of  caching 
granularity:  attribute  caching,  object  caching,  and  hybrid  caching.  In  attribute 
caching,  frequently  accessed  attributes  of  objects  are  cached  in  a  mobile  user’s 
local  storage.  In  object  caching,  the  objects  themselves  are  cached.  In  hybrid 
caching,  only  the  frequently  accessed  attributes  of  accessed  objects  are  cached. 

Cache  Coherence.  A  cache  coherence  strategy  Involves  cache 
invalidation  and  update  schemes  to  invalidate  and  update  an  outdated  cached 
object.  (Cached  objects  become  outdated  when  the  objects  residing  at  the 
server  are  updated.)  A  cache  coherence  strategy  provides  a  mobile  computing 
device  with  the  ability  to  update  its  cached  objects.  A  mobile  user  should  take  an 
active  role  in  maintaining  the  coherence  of  the  cached  objects  and  determining  if 
a  particular  cached  item  should  be  invalidated.  It  is  not  feasible  for  the  mobile 
user’s  home  server  to  keep  track  of  all  cached  copies  of  individual  items. 

Cache  Replacement.  If  a  mobile  user  can  provide  unlimited  disk  storage 
on  his  mobile  computing  device,  all  the  frequently  accessed  objects  of  the  mobile 
user  can  be  cached.  However,  storage  for  caching  on  mobile  computing  devices 
is  limited.  Moreover,  caching  rarely  accessed  objects  will  result  in  a  waste  of 
system  resources.  Therefore,  for  best  performance,  a  cache  replacement  policy 
is  needed  to  retain  only  frequently  accessed  objects. 
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2. 


Screen  Caching 


Internet  Browsers  can  cache  screens  and  store  screens  internally  for  the 
duration  of  an  Internet  session.  Browsers  on  mobile  computing  devices  are  often 
set  to  cache  screens  such  as  menu  screens,  which  are  frequently  used  by  the 
mobile  user,  in  order  to  minimize  the  amount  of  wireless  mobile  communication. 

However,  problems  can  arise  because  the  cached  screen  may  become 
obsolete  at  unpredictable  times.  Caching  software  is  used  on  mobile  computing 
devices  to  solve  this  problem.  Caching  software  takes  requests  for  a  specific 
screen  and  then  checks  its  local  cache  for  that  screen.  The  software  can 
determine  whether  the  screen  in  the  cache  memory  of  the  mobile  computing 
device  is  the  most  recent  or  if  the  screen  needs  to  be  replaced  and  refreshed  by 
comparing  time  stamps  on  the  screens. 


3.  Differencing 

The  concept  of  differencing  means  to  cache  an  object  on  both  the  mobile 
computing  device  and  on  its  home  server.  When  the  home  server  receives  a 
response  from  a  Web  server,  the  home  server  computes  the  difference  between 
the  response  and  the  object,  and  then  sends  the  difference  to  the  mobile 
computing  device.  The  mobile  computing  device  merges  the  difference  with  the 
original  object  to  create  the  browser  response. 

Differencing  is  also  used  to  distinguish  Hyper  Text  Markup  Language 
(HTML)  documents.  HTML  enables  mobile  users  to  enter  data  and  then  submit 
the  data  for  processing  by  some  executable  program  located  on  the  Web.  The 
executable  program  on  the  Web  is  identified  by  a  Universal  Resource  Locator 
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(URL),  and  then  a  command  is  sent  from  the  browser  to  the  server  specified  by 
the  URL. 


The  rules  for  invoking  and  enabling  programs  to  read  data  and  generate 
responses  are  collectively  called  Common  Gateway  Interface  (CGI).  The  term 
CGI  Processing  refers  to  the  process  of  executing  programs  from  Web  browsers. 
Caching  techniques  do  not  help  in  CGI  processing,  because  mobile  users  enter 
different  data  for  different  requests,  receive  different  results,  and  no  two  replies  to 
requests  are  identical  for  the  same  URL.  A  different  form  of  caching  and 
differencing  technology  is  used  to  minimize  responses  from  CGI  programs.  This 
approach  is  based  on  the  observation  that  various  responses  from  the  same 
Web  server  are  usually  very  similar. 

Initially,  there  is  no  record  of  a  cached  response  for  the  URL  at  the  mobile 
computing  device  cache  memory.  The  mobile  computing  device  determines  that 
the  Hyper  Text  Transport  Protocol  (HTTP)  request  is  a  CGI  request,  if  the  URL  is 
followed  by  a  name/value  parameter  list.  Then,  the  mobile  computing  device 
sends  the  request  to  its  home  server.  The  home  server  fonwards  the  mobile 
user’s  request  to  a  destination  server  on  the  Web.  Once  the  home  server 
receives  the  response  from  the  destination  server,  it  caches  the  response  before 
forwarding  it  to  the  mobile  computing  device.  Likewise,  the  object  is  cached  at 
the  mobile  computing  device  before  it  is  sent  to  the  browser.  An  object  has  been 
established  for  the  CGI  URL  at  this  point  in  time. 

When  the  mobile  computing  device  detects  a  request  for  CGI  processing, 
the  device  checks  whether  the  URL  is  cached.  Then,  the  mobile  computing 
device  forwards  the  user’s  request  to  its  home  server  along  with  the  Cyclic 
Redundancy  Check  (CRC),  value  of  the  object.  The  CRC  is  maintained  as  part 
of  the  request  state.  The  HTTP  data  stream  is  forwarded  to  the  HTTP  server  to 
execute  the  request. 
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Once  the  home  server  receives  a  report  from  the  HTTP  server,  the  home 
server  determines  that  differencing  is  possible  because  an  object  for  the  URL 
exists  in  the  cache,  and  its  CRC  matches  the  one  received  with  the  request  from 
the  mobile  computing  device.  The  differencing  engine  computes  the  difference 
stream  between  the  received  response  and  the  object.  Then,  the  home  server 
sends  the  difference  stream  to  the  mobile  computing  device.  The  mobile 
computing  device’s  update  engine  uses  the  difference  stream  and  constructs  a 
new  report  for  the  browser.  Consequently,  the  mobile  computing  device  sends 
the  new  report  to  the  browser. 

Wireless  communication  links  are  slow  and  unreliable.  Use  of  the 
Differencing  technique  along  with  caching  significantly  reduces  the  data 
transmission  rate  over  wireless  communication  links.  Differencing  prevents  the 
repeated  transmission  of  the  same  data  on  the  low  bandwidth  wireless  link. 
Thus,  a  mobile  computing  device  can  overcome  the  drawbacks  of  the  slow, 
unreliable,  and  low  bandwidth  wireless  communication  link. 


4.  Protocol  Reduction 

The  use  of  caching  and  differencing  techniques  can  significantly  reduce 
the  amount  of  data  that  is  transmitted  over  the  wireless  communication  links. 
However,  caching  and  differencing  techniques  do  not  address  the  overhead  of 
repeated  TCP/IP  connections  and  redundant  header  transmissions.  The 
WebExpress  employs  techniques  to  minimize  the  overhead  of  both  repeated 
TCP/IP  connections  and  redundant  header  transmissions.  WebExpress  is  a 
software  system  that  significantly  reduces  data  volume  and  latency  of  wireless 
communications.  WebExpress  provides  wireless  communication  reduction  by 
using  an  interception  technology  transparent  to  Web  users  and  servers. 


Each  mobile  computing  device  connects  to  its  home  server  with  a  single 
TCP/IP  connection.  All  of  the  mobile  user’s  requests  are  transferred  over  this 
single  TCP/IP  connection.  Requests  and  responses  are  multiplexed  over  the 
connection. 

The  WebExpress  system  eliminates  most  of  the  opening  closing 
connections  by  establishing  a  single  TCP/IP  connection  between  the  mobile 
computing  device  and  home  server.  The  mobile  computing  device  intercepts 
document  requests  and  connections  from  the  browser,  and  then  sends  them  to 
the  home  server  over  a  single  TCP/IP  connection.  The  mobile  computing 
device’s  home  server  establishes  a  connection  with  the  destination  Web  server 
for  each  request  received  from  the  mobile  computing  device,  and  then  forwards 
the  mobile  user’s  requests  to  the  destination  server.  Once  the  home  server 
receives  a  response  from  the  destination  server,  the  connection  with  the 
destination  server  is  closed.  Then,  the  home  server  forwards  the  response  to  the 
browser  and  closes  its  TCP/IP  connection  with  the  browser.  The  connection 
setup  and  teardown  overhead  is  incurred  between  browser-mobile  computing 
device  and  the  home  server-Web  server,  but  not  between  the  mobile  computing 
device  and  its  home  server. 

WebExpress  uses  virtual  sockets  to  provide  that  multiplexing  support. 
Virtual  sockets  provide  a  mobile  computing  device  to  establish  a  single  TCP/IP 
connection  with  its  home  server  and  use  this  connection  for  many  HTTP 
requests.  Virtual  sockets  permit  efficient  transport  of  HTTP  requests  and 
respond  while  maintaining  correct  HTTP  protocol  and  WebExpress  transparency 
for  Web  browsers  and  sen/ers.  [Ref.  42] 


42 


5. 


Header  Reduction 


When  a  mobile  user  establishes  a  connection  with  its  home  server,  the 
mobile  computing  device  sends  its  capabilities  to  its  home  server  only  on  the  first 
request.  The  mobile  computing  device  capabilities  are  maintained  by  the  home 
server  during  the  connection. 

The  HTTP  requires  that  each  request  contain  the  browser’s  capabilities. 
This  information  about  the  browsers’  capabilities  is  the  same  for  ali  requests  for  a 
given  browser.  The  mobile  computing  device  includes  the  capabilities  as  part  of 
the  HTTP  request  that  are  forwards  to  the  home  server. 

HTTP  requests  and  responses  are  prefixed  with  headers.  HTTP  request 
headers  contain  a  list  of  content-types.  This  list  informs  the  home  server  of  the 
various  document  formats  which  the  browser  can  handle.  It  is  unnecessary  to 
send  this  list  across  the  wireless  communication  link  in  every  request,  because 
the  list  is  constant  for  the  browser.  The  mobile  computing  device  sends  that  list 
to  its  home  server  in  the  first  request  while  establishing  a  connection.  This  list  is 
saved  by  the  home  server  and  the  mobile  computing  device  as  part  of  the 
connection  state  information.  The  mobile  computing  device  compares  the  list 
received  from  the  browser  with  its  saved  version  for  each  request.  If  they  match, 
the  list  is  deleted  from  the  request  before  it  is  sent  to  the  home  server.  When  the 
home  server  receives  a  request  from  the  mobile  computing  device  with  no 
access  lists,  it  inserts  its  saved  copy  into  the  request  header.  If  an  access  list  is 
present  in  the  received  request,  the  home  server  replaces  the  saved  version. 
Consequently,  the  correct  access  list  is  sent  to  the  home  server  as  if  there  were 
a  direct  browser-server  connection.  ^ 

HTTP  response  headers  are  normally  different  for  each  request. 
However,  response  headers  vary  only  by  a  few  bytes  from  one  response  to 
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another.  Encoding  the  constant  content-type  data  can  reduce  the  response  to 
just  a  few  bytes.  This  reduction  can  be  worthwhile  when  multiplied  by  all  the 
mobile  computing  devices  sharing  a  wireless  communication  link. 


6.  Data  Access  Profile 

A  data  access  profile  is  the  information  that  is  of  particular  interest  to  the 
mobile  user.  Each  mobile  user  has  his  own  data  access  profile  and  sub-profile 
which  are  stored  on  the  mobile  user’s  home  server.  Upon  login,  the  mobile 
user’s  data  access  profile  and  sub-profile  are  used  to  build  the  proxy  and  mobile 
computing  device  cache. 

Profiles  help  to  minimize  wireless  mobile  computing  communication  cost. 
Because  the  mobile  support  station  knows  which  data  is  of  interest,  and  then  it 
sends  large  data  blocks  to  the  mobile  computing  device  at  startup  rather  than 
demand  paging.  Because  the  cost  of  connection  setup  and  teardown  is  high, 
sending  fewer  longer  messages  is  more  cost  effective  than  sending  many  shorter 
messages.  Downloading  the  mobile  user’s  sub-profile  to  the  mobile  computing 
device  cache  reduces  the  number  of  requests  by  the  mobile  device.  The  dollar 
cost  of  sending  information  over  a  wireless  network  is  high.  Hence,  fewer 
requests  and  replies  are  transmitted  over  the  wireless  link. 


7.  Delayed  Write  Mechanism 

Delayed  write  mechanism  is  used  to  minimize  the  number  of  transfers 
from  the  mobile  computing  device  to  the  mobile  support  station. 
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A  mobile  computing  device  batches  its  updates  and  then  dispatches  those 
updates  periodically  to  the  mobile  support  station.  Batching  updates  result  in 
fewer  long  messages  rather  than  many  small  messages.  In  wireless  mobile 
computing,  the  overhead  of  connection  setup  and  teardown  is  high,  so  fewer 
longer  conversations  are  better  than  many  short  conversations  in  terms  of 
communication  cost.  Therefore,  the  delayed  write  technique  helps  a  mobile 
computing  device  to  conserve  power  and  to  minimize  mobile  communication  cost 
by  reducing  the  setup  and  teardown  costs. 

Delayed  Write  Mechanism  is  managed  with  the  help  of  mobile  computer’s 
caching  mechanism.  Old  data  must  be  removed  to  provide  room  for  new  data  in 
cache  memory.  Caches  use  a  mechanism  to  choose  least-recently-used  data 
blocks  for  replacement.  On  average,  blocks  remain  unreferenced  for  almost  an 
hour  before  they  are  replaced.  Usually,  only  clean  blocks  are  replaced  and  dirty 
blocks  are  always  written  back  to  the  mobile  support  station  long  before  they  can 
be  replaced. 

Dirty  cache  blocks  can  be  written  to  the  mobile  support  station  for  several 
reasons,  and  the  most  common  is  the  delayed  write  policy.  The  delayed  write 
policy  forces  blocks  to  be  written  to  the  mobile  support  station  after  they  have 
been  dirty  for  thirty  seconds.  The  data  integrity  is  the  reason  why  dirty  bytes 
leave  the  cache.  Dirty  blocks  almost  never  leave  the  cache  to  make  room  for 
other  blocks.  They  are  usually  written  out  to  make  new  data  permanent  by  the 
delayed  write  mechanism.  Therefore,  increasing  the  size  of  the  file  cache  does 
not  reduce  write-back  traffic.  The  write  traffic  can  only  be  minimized  by 
increasing  the  write-back  delay. 
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8. 


Strict  and  Loose  Reads 


There  are  two  levels  of  read  consistency,  strict-read  and  ioose-read. 
Strict-read  returns  the  most  up-to-date  information.  Strict-read  call  returns  the 
latest  consistent  value  written  by  a  strict  reader  by  contacting  all  servers  and 
finding  and  retrieving  the  most  up-to-date  copy,  A  strict-read  is  needed  when  a 
mobile  user  needs  the  most  recent  valid  copy  of  a  page  and  before  any  writes.  A 
proxy  Is  then  responsible  for  retrieving  the  page  either  by  requesting  that  page 
from  the  home  server  or  recalling  it  from  its  own  cache  memory. 

Loose-read  allows  the  mobile  user  to  access  data  which  is  available  in  the 
mobile  computing  device  cache  or  in  the  proxy  cache.  Loose-read  returns 
information  —  the  information  is  not  necessarily  the  most  up-to-date,  but  the  most 
accessible.  The  loose-read  technique  reduces  bandwidth  requirements,  because 
fewer  requests  are  initiated  from  the  mobile  computing  device.  So,  the  mobile 
connectivity  on  wireless  links  can  be  enhanced  in  terms  of  performance  and 
reliability. 


9.  Semantic  Callbacks  and  Validators 


Large  communication  latency  over  wireless  links  increases  the  cost  of 
validating  of  cached  pages,  because  maintaining  cache  coherence  under 
wireless  weak  connectivity  conditions  is  an  expensive  process.  The  cost  of 
cache  coherence  is  exacerbated  in  systems  like  Coda^.  The  Coda  system  uses 
anticipatory  caching  for  availability.  In  anticipatory  caching,  the  number  of 
cached  pages  Is  much  larger  than  the  number  of  pages  in  current  use.  The 


Coda  system  is  one  of  the  earliest  systems  to  demonstrate  that  an  optimistic  replica  control 
strategy  can  be  used  for  serious  and  practical  mobile  computing.  Coda  demonstrates  that 
disconnected  operation  is  feasible  in  a  distributed  Unix  file  system.  Coda  has  shown  that  weak 
connectivity  can  be  exploited  to  alleviate  the  limitations  of  disconnected  operation. 
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Coda  system  maintains  cache  coherence  at  multiple  levels  of  granularity  and 
uses  callbacks.  Users  and  servers  maintain  version  information  on  both 
individual  objects  and  entire  sub-trees.  Cache  validation  is  provided  by 
comparing  version  stamps  on  the  sub-trees,  and  validity  is  maintained  through 
callbacks.  The  Coda  system  preserves  accuracy  while  reducing  the  cost  of 
cache  coherence  under  weak  connectivity  conditions. 

Satyanarayanan,  M.  recommends  maintaining  cache  coherence  at 
multiple  granularities  to  a  variety  of  data  types  and  applications  in  the  following 
ways  [Ref.  2]: 

•  A  mobile  user  caches  data  satisfying  some  predicate  P  from  the 
server. 

•  The  server  remembers  a  predicate  Q,  which  is  much  cheaper  to 
compute,  and  possesses  the  property  Q  that  Implies  P.  In  other  words, 
as  long  as  Q  is  true,  the  cached  data  is  guaranteed  to  be  valid. 
However,  if  Q  is  false,  nothing  can  be  inferred  about  that  data. 

•  On  each  update,  the  server  re-evaluates  O.  If  Q  becomes  false,  the 
server  notifies  the  user  that  its  cached  data  might  be  stale. 

•  Before  its  next  access,  the  user  must  contact  the  server  and  obtain 
fresh  data  satisfying  P. 

Satyanarayanan  refers  to  Q  as  a  semantic  callback  for  P.  The 
interpretation  of  P  and  Q  depends  on  the  specifics  of  the  data  and  application.  Q 
must  conform  to  P.  a  simpler  select  statement  in  the  first  case,  and  a  piece  of 
code  that  performs  a  less  accurate  pattern  match  in  the  second  case.  In  the 
Coda  system,  P  corresponds  to  the  version  number  of  an  object  equal  to  a 
specific  value  x.  Q  corresponds  to  the  version  number  of  the  encapsulating 
volume  unchanged  since  the  last  time  the  version  number  of  the  object  was 
confirmed  to  be  x.  [Ref.  2] 
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Semantic  validation  is  valuable  when  the  timing  difference  between  local 
and  remote  actions  is  too  large.  The  predicate  Q  serves  as  an  inexpensive 
validator  for  cached  data.  Semantic  Callbacks  and  Validators  technique  is 
valuable  in  mobile  computing  and  widespread  distributed  systems,  because 
preserving  cache  coherence  under  wireless  weak  connectivity  conditions  can  be 
expensive  and  large  communication  latency  can  increase  the  cost  of  validation  of 
cached  objects. 


10.  Data  Allocation 

Wireless  communication  is  more  expensive  than  wire  communication 
because  of  low  bandwidth,  and  can  become  very  expensive  for  mobile  users  that 
perform  many  accesses  per  day.  Wireless  communication  can  be  minimized  by 
using  an  appropriate  data  allocation  scheme.  If  a  mobile  user  frequently  reads 
an  object,  and  that  object  is  not  updated  frequently,  then  it  is  beneficial  for  the 
mobile  user  to  allocate  a  copy  object  to  the  mobile  computing  device.  In  this 
way,  read  operations  access  the  local  copy  of  the  object  and  do  not  require 
communication.  If  the  mobile  user  reads  objects  relatively  infrequently  as 
compared  to  the  update  rate,  then  a  copy  of  the  object  should  not  be  allocated  to 
the  mobile  computing  device. 

If  an  allocation  is  warranted,  then  one  of  the  two  kinds  of  allocation 
schemes  is  used  to  allocate  an  object  to  the  mobile  computing  device,  the  one- 
copy  allocation  scheme  or  two-copies  allocation  scheme.  In  the  one-copy 
scheme,  only  the  home  server  has  a  copy  of  the  object.  In  the  two-copies 
scheme,  both  the  home  server  and  the  mobile  computing  device  have  a  copy  of 
the  object. 
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An  allocation  method  determines  whether  the  allocation  scheme  changes 
over  time  or  not.  In  a  static  allocation  method,  the  allocation  scheme  does  not 
change  over  time.  In  contrast,  the  allocation  scheme  changes  over  time  in 
dynamic  allocation  method.  There  are  two  static  allocation  methods,  one  uses 
the  one-copy  scheme,  and  the  other  uses  the  two-copies  scheme  and  a  family  of 
dynamic  data  allocation  methods.  These  static  allocation  methods  are  used  to 
select  the  allocation  scheme  according  to  the  read/write  ratio.  If  the  reads  are 
more  frequent  than  the  writes,  then  the  two-copies  allocation  scheme  is  used; 
otherwise,  the  one-copy  allocation  scheme  is  used. 

The  family  consists  of  all  the  methods  that  allocate  and  de-allocate  a  copy 
of  an  object  to  the  mobile  computing  device  based  on  a  sliding  window  of 
requests.  For  every  read  or  update,  the  latest  requests  are  examined.  If  the 
number  of  reads  is  higher  than  the  number  of  writes  and  the  mobile  computing 
device  does  not  have  a  copy  of  object,  then  a  copy  of  object  is  allocated  to  the 
mobile  computing  device.  If  the  number  of  writes  is  higher  than  the  number  of 
reads  and  the  mobile  computing  device  has  a  copy  of  object,  then  the  copy  is  de¬ 
allocated.  Hence,  the  allocation  scheme  is  dynamically  adjusted  according  to 
the  relative  frequencies  of  reads  and  writes.  Data  allocation  algorithms  are 
implemented  by  software  residing  on  both  the  mobile  computing  device  and  its 
home  server.  Data  Allocation  Method  minimizes  the  amount  of  data  transferred 
over  wireless  links  to  reduce  the  wireless  communication  cost. 


11.  Data  Compression 

Data  compression  consists  of  taking  a  stream  of  symbols  and 
transforming  them  into  codes.  If  the  compression  is  effective,  the  resulting 
stream  of  codes  will  be  smaller  than  the  original  symbols,  so  the  amount  of  data 
transferred  over  wireless  communication  links  are  reduced. 
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Conventional  data  compression  techniques  achieve  a  thirty  to  fifty  percent 
data  reduction  depending  on  the  data.  Wireless  communication  services  that 
charge  by  the  byte  (rather  than  by  the  duration  of  the  connection)  use 
compression,  but  charge  by  the  uncompressed  byte.  Hence,  strategy  to 
minimize  cost  is  to  perform  the  compression  before  sending  the  data  to  the 
wireless  service. 

Data  compression  techniques  can  be  divided  into  two  major  parts, 
lossless  compression  and  lossy  compression.  Lossless  data  compression 
reduces  data  size  by  eliminating  the  redundancies  in  the  data.  Lossless 
compression  guarantees  to  generate  a  duplicate  of  the  input  data  after  a 
compress/expand  cycle.  Hence,  each  bit  in  the  data  can  be  restored  precisely  by 
decompression.  Lossless  compression  is  implemented  using  one  of  two  different 
types  of  modeling:  dictionary-based  modeling  and  statistical  modeling. 
Dictionary-based  modeling  uses  an  algorithm  to  replace  strings  of  characters.  As 
the  dictionary-based  algorithm  reads  an  uncompressed  data,  it  examines  the 
data  for  recurring  patterns.  When  the  algorithm  identifies  a  pattern,  it  writes  the 
pattern  to  a  dictionary.  The  dictionary  is  stored  as  part  of  the  compressed  data. 
The  algorithm  uses  a  shorter  pointer  that  tells  where  the  omitted  pattern  can  be 
found  in  the  dictionary.  Statistical  modeling  reads  in  and  encodes  a  single 
symbol  at  a  time  using  the  probability  of  that  character’s  appearance. 

Lossless  data  compression  can  be  used  when  compressing  databases  or 
word  processing  files.  The  extent  to  which  the  data  shrinks  depends  on  the  type 
of  the  data.  Some  types  of  data  such  as  databases  and  word  documents,  are 
prone  to  redundancies  and  are  particularly  susceptible  to  compression.  In  these 
applications,  the  loss  of  even  a  single  bit  could  be  catastrophic. 

Lossy  compression  is  fundamentally  different  from  lossless  compression 
in  one  respect:  lossless  compression  accepts  a  slight  loss  of  data  to  facilitate 
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compression.  Lossy  compressed  files  cannot  be  decompressed  to  their  original 
state.  Lossy  compression  is  performed  on  analog  data  stored  digitally.  Lossy 
data  compression  is  effective  when  applied  to  digitized  voice  and  graphics 
images.  Graphics  files  use  lossy  compression  that  reduces  the  file  size  by 
discarding  data  whose  loss  will  not  be  noticed,  such  as  small  variations  in  color. 
A  lossy  compression  program  does  not  change  the  basic  nature  of  the  graphics 
images. 

Consequently,  data  compression  techniques  achieve  data  reduction  over 
wireless  links.  Wireless  communication  cost  can  be  minimized  performing  data 
compression  before  sending  the  data  to  the  wireless  service  that  charges  the 
mobile  user  by  the  byte. 


12.  Data  Scheduling 

There  are  two  kinds  of  data  broadcasting  modes  in  mobile  computing 
environments,  one-way  communication  two-way  communication  modes.  In  the 
one-way  communication  mode,  the  server  repeatedly  broadcasts  data  on  a 
public  channel  and  mobile  computing  devices  listen  to  that  channel  and  access 
the  data  of  interest  in  the  broadcast  stream.  In  the  two-way  communication 
mode,  mobile  computing  devices  send  requests  to  the  server  and  then  receive 
replies  from  the  server. 

There  are  two  kinds  of  parameters  related  to  data  broadcasting,  access 
time  and  tuning  time.  Access  time  is  the  time  that  elapses  from  the  moment  a 
mobile  user  submits  a  request  to  the  receipt  of  data  of  interest  on  a  channel. 
Tuning  time  is  the  time  spent  by  a  mobile  user  listening  to  the  channel. 
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The  data  scheduling  method  finds  a  broadcast  schedule  of  data  for 
minimizing  the  access  time  of  the  requests  issued  by  mobile  computing  devices. 
Chung,  Y.  D.,  and  Kim,  M.  H.  introduce  a  wireless  broadcast  data  scheduling 
method  called  OEM  [Ref.  10].  OEM  constructs  the  broadcast  schedule  by 
expanding  the  Query  Distance  Schedule  (QDS)  of  each  query  after  sorting  the 
queries  based  on  frequency.  The  algorithm  used  in  this  method  is  described  in 
Figure  3.1,  and  its  basic  policies  are  as  follows: 

•  Policy  1:  Higher-frequency  query  takes  precedence  over  the  lower- 
frequency  query  when  expanding  the  schedule. 

•  Policy  2:  When  expanding  a  query,  that  is  its  QDS,  the  Query 
Distance  (QD)’s  of  the  queries,  previously  expanded,  remain 
unchanged. 

•  Policy  3:  When  expanding  the  QDS  of  query  q\  into  the  currently 
constructed  schedule,  the  proposed  method  always  minimizes  the  QD 
of  qi,  as  much  as  possible. 


Algorithm: 

QEM 

input: 

A  set  of  data  D  and  a  set  of  queries  Q 

Output: 

A  broadcast  schedule  S 

Method: 

1 .  Initially  S  is  empty. 

2.  Sort  the  queries  in  decreasing  order  of  freq  (qi). 

3.  For  each  query  q,  in  the  sorted  order,  expand  S 
with  qi  by  using  the  QDS  Expanding  Rules. 

Figure  3.1 :  Description  of  the  QEM  Algorithm.  [From  Ref.  10] 
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The  authors  give  the  following  example  to  introduce  the  QEM  data 
scheduiing  method  [Ref.  10].  They  assume  that  there  are  eight  data  objects  to 
be  broadcasted  and  three  queries  that  mobile  users  submit  onto  the  broadcasting 
channel.  The  data  set  of  each  query  is  depicted  as  shown  in  Figure  3.2.  The 
authors  assume  that  all  data  objects  are  equal  in  size  and  also  that  the 
occurrence  frequency  of  each  query  is  freq  (qi)=3,  freq  (q2)=2,  and  freq  (q3)=1. 

Initially,  the  schedule  8®*®^°  is  empty.  According  to  Policy  1,  the  QEM 
algorithm  finds  the  highest  frequency  query,  qi,  and  expands  its  QDS.  Then  the 
current  schedule  is  formed  as:  S®*®'’’  =  [d1,  d2,  d4,  d5].  Second,  the 
algorithm  expands  the  query  q2,  whose  QDS  is  {d4,  d5,  d6,  d7,  d8}.  Since  the 
current  schedule  S®'®’’^  contains  the  data  objects  d4  and  d5  that  are  in  QDS  (q2), 
the  schedule  is  expanded  into  one  of  these  forms: 

S®*®P"RightAppend  =  [dl.  d2]  [d4,  d5]  [d6,  d7,  d8] 

S®‘®P\eftAppend  =  [d6,  d7,  d8]  [d4,  d5]  [dl ,  d2]. 


Figure  3.2:  Queries  and  their  QDS’s.  [From  Ref.  10] 
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The  former  schedule  is  the  result  of  appending  QDS  (qa)  at  the  right  end  of 
Sstepi ,  whereas  the  latest  one  is  that  of  left  appending. 

As  the  data  objects  bounded  by  ‘[‘  and  ’]’  are  freely  interchangeable,  there 
are  24  (6*2*2)  possible  ways  of  data  ordering  for  each  schedule.  The  schedule 
minimizes  the  QD  of  qa  (Policy  3)  while  preserving  the  QD  of  qi  unchanged, 
that  is  QD  (qi.  =  QD  (qi,  (Policy  2). 

Finally,  the  QDS  (qa)  is  expanded.  Among  the  data  objects  in  QDS  (qa), 
only  d3  is  not  included  in  the  current  schedule  S®*®p^.  Inserting  d3  Into  the 
schedule  increases  the  QD  of  qi  and  qa,  violating  Policy  2.  Hence,  d3  must  be 
appended  to  the  left  or  right  end  of  S®*®^^.  When  appending  d3,  the  data  objects 
of  d2,  d5,  and  d6  have  to  be  moved  for  minimizing  the  QD  of  qa  as  follows: 

S  ^  RightAppend  —  [d1]  [d2]  [d4,  d5]  [d6,  d7,  d8]  [d3] 

S®*®P\eftAppend  =  [d3]  [d1,  d2]  [d4,  d5]  [d6]  [d7,  d8]. 

In  the  two  schedules  above,  S®*®P\eftAppend  gives  smaller  TQD,  for  QD  (qa, 
S®*®’^\eftAppend)  is  less  than  QD  (qa,  S®*®’^RightAppend)  and  those  of  qi  and  qa  are 
equal.  Thus,  the  final  schedule  will  take  one  of  the  following  forms  that  are 
results  of  S  ^  LcftAppend" 

<  d3,  d1 ,  d2,  d4,  d5,  d6,  d7,  d8  > 
or  <  d3,  d2,  d1 ,  d4,  d5,  d6,  d7,  d8  > 

or  <  d3,  d1 ,  d2,  d5,  d4,  d6,  d7,  d8  > 

or  <  d3,  d2,  d1 ,  d4,  d5,  d6,  d8,  d7  >  and  so  on. 

The  QEM  method  minimizes  access  time  by  the  efficient  scheduling  of 

wireless  broadcast  data.  QEM  effectively  constructs  wireless  broadcast 
schedules  and  yields  a  twenty  percent  reduction  in  access  time  [Ref.  10].  This 
reduction  Is  significant  in  access  time  on  low-bandwidth  wireless  links  in  terms  of 
performance. 
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13.  The  Proxy  Process 


A  mobile  computing  device  transfers  data  of  interest  over  the  wireless 
communication  links.  Wireless  links  are  slow  because  of  the  limited  bandwidth 
and  unreliable  because  of  the  frequent  disconnections.  Therefore,  the  requests 
of  mobile  user  may  time-out  or  several  retries  may  be  required.  These  limitations 
increase  the  amount  of  traffic  over  the  wireless  link.  Fortunately,  the  amount  of 
data  traffic  can  be  reduced  by  delegating  the  mobile  user’s  tasks  to  the  proxy 
process. 

A  proxy  can  be  executed  in  a  fixed  location,  or  it  may  be  mobile.  Many 
systems  that  support  wireless  mobile  computing  provide  proxies.  Proxies 
perform  various  functions  on  behalf  of  their  mobile  users,  and  can  be  used  to 
process  control  information  or  to  manipulate  mobile  user  information.  A  proxy 
can  also  be  used  for  a  mobile  user  to  request  a  default  connection,  such  as  a 
voice  connection  to  their  home,  or  a  data  connection  to  their  office. 

The  proxy  process  manages  data  and  services  for  the  mobile  users. 
When  a  mobile  computing  device  registers  with  a  mobile  support  station,  the 
proxy  is  created  upon  registration  for  the  mobile  user  at  the  mobile  support 
station.  To  obtain  the  mobile  user’s  profile,  the  proxy  contacts  the  mobile  user’s 
home  server.  The  proxy  caches  the  mobile  user’s  profile  and  sends  the  sub¬ 
profile  to  the  mobile  computing  device. 

Proxies  can  be  used  to  filter  or  modify  application  information  being  sent 
to  a  mobile  computing  device.  For  example,  a  wireless  web  browser  may  not 
have  the  bandwidth  available  to  receive  Images  embedded  in  a  page,  would  be 
better  served  by  receiving  only  text  information  [Ref.  34].  The  amount  of 
bandwidth  used  by  the  application  on  the  air  interface  is  greatly  reduced  by 
filtering  at  a  proxy. 
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The  proxy  knows  what  the  mobile  computing  device  cache  holds. 
Therefore,  a  proxy  can  filter  out  data  that  is  sent  by  the  home  server  and 
broadcast  only  data  necessary  to  update  the  mobile  computing  device  cache. 
This  kind  of  data  filtering  minimizes  the  transfers  from  the  mobile  support  station 
to  the  mobile  computing  device,  and  reduces  the  power  consumption  of  the 
mobile  computing  device  while  receiving  data. 

The  mobile  computing  device  sends  its  requests  to  the  proxy.  The  proxy 
retrieves  pages  on  behalf  of  the  mobile  computing  device.  This  process 
minimizes  the  number  of  retries  and  timeouts.  Hence,  the  amount  traffic  over 
wireless  link  is  reduced. 

When  the  mobile  computing  device  disconnects  from  the  wireless  link  to 
conserve  power,  it  cannot  receive  any  messages.  The  proxy  buffers  messages 
and  invalidations  until  the  mobile  computing  device  is  ready  to  receive  them. 
When  the  mobile  computing  device  reconnects,  the  proxy  sends  updates  to  the 
mobile  computing  device.  This  feature  helps  save  time,  as  othenwise,  the  mobile 
computing  device  cache  needs  to  rebuild  itself. 

The  proxy  process  is  very  useful  for  mobile  computing.  After  the  proxy  is 
submitted,  the  mobile  computing  device  can  be  disconnected  from  the  wireless 
network.  Hence,  a  proxy  helps  to  save  on  wireless  communication  costs  that  can 
be  very  expensive  over  wireless  links. 


14.  Adaptation  Strategy 

Adaptation  insulates  mobile  users  from  the  drawbacks  of  the  mobile 
computing  environments  by  using  local  resources  to  reduce  wireless 
communication  traffic.  The  needs  of  mobile  users  vary  according  to  the 
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capabilities  of  their  computing  devices,  such  as  processing  speed,  screen  size, 
etc.  The  features  of  the  computing  devices  make  it  difficult  for  servers  to  provide 
an  appropriate  level  of  service  to  their  users.  Application-level  adaptation  solves 
these  problems  and  provides  mobile  services  to  the  users  regardless  of  their 
computers’  capabilities. 

Fox,  A.,  Gribble,  S.  D.,  Chawathe,  Y.,  and  Brewer,  E.  A.,  introduce  a 
proxy-based  approach  to  adaptation  [Ref.  39].  in  the  proxy-based  approach,  the 
proxy  agents  reside  between  servers  and  users  to  perform  users’  tasks.  The 
authors  identify  the  following  advantages  of  the  proxy  approach  over  the  server- 
based  ®  and  user-based  ^  approaches: 

•  Leveraging  the  installed  infrastructure  through  incremental 
deployment.  The  enormous  installed  Infrastructure  and  its  attendant 
base  of  existing  content  is  too  valuable  to  waste;  yet,  some  clients 
cannot  handle  certain  data  types  effectively.  User  and  network 
heterogeneity  should  allow  Interoperability  with  existing  servers  by 
enabling  incremental  deployment  while  evolving  content  formats  and 
protocols  are  tuned  and  standardized  for  different  target  platforms.  A 
proxy-based  approach  lends  itself  naturally  to  transparent  incremental 
deployment,  since  an  application-level  proxy  appears  as  a  server  to 
existing  users  and  as  a  client  to  existing  servers. 

•  Rapid  prototyping.  Software  development  on  "Internet  time"  does  not 
allow  for  long  deployment  cycles.  Proxy-based  adaptation  provides  a 
smooth  path  for  rapid  prototyping  of  new  sen/ices,  formats,  and 
protocols  that  can  be  deployed  to  servers  or  user  later  if  the  prototypes 
succeed. 

®  Server-based  approach  attempts  to  insert  adaptation  machinery  at  each  end  server.  [Ref.  39] 

^  User-based  approach  attempts  to  bring  all  users  up  to  a  least-common-denominator  level  of 
functionality.  [Ref.  39] 
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•  Economy  of  scale.  A  large  central  server  is  more  efficient  than  a 
collection  of  smaller  servers  in  terms  of  cost  and  utilization. 
Standalone  desktop  systems  represent  one  server  per  user.  This 
supports  the  argument  for  Network  Computers,  and  suggests  that  co¬ 
locating  proxy  services  with  infrastructural  elements  (such  as  Internet 
points-of-presence)  achieves  effective  economies.  [Ref.  39] 


a.  Taxonomy  of  Adaptation  Strategies 

Satyanarayanan,  M.  introduces  the  taxonomy  of  adaptation 
strategies  in  [Ref.  2]  as  shown  in  Figure  3.3.  The  range  of  strategies  for 
adaptation  is  delineated  by  two  extremes,  Laissez-faire  (no  system  support)  and 
Application-transparent  (no  changes  to  applications). 


Application-aware  Adaptation 
(Collaboration) 

r  ^ 

Laissez-faire  Adaptation  Application-transparent  Adaptation 

(No  system  support)  (No  changes  to  applications) 

Figure  3.3:  Range  of  Adaptation  Strategies.  [From  Ref.  2] 
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In  Laissez-faire  adaptation,  system  support  is  unnecessary  and 
adaptation  is  the  responsibility  of  individual  applications.  The  Laissez-faire 
approach  makes  applications  more  difficult  to  write  and  fails  to  amortize  the 
development  cost  of  support  for  adaptation. 

In  an  application-transparent  adaptation,  the  system  is  responsible 
for  adaptation.  The  system  provides  the  focal  point  for  resource  arbitration  and 
control.  The  application-transparent  approach  is  attractive,  because  it  is 
backward  compatible  with  existing  applications.  Applications  continue  to  work 
without  any  modifications  when  mobile. 

Application-aware  adaptation  lies  between  Laissez-faire  adaptation 
and  Application-transparent  adaptation.  Application-aware  adaptation  permits 
applications  to  determine  how  best  to  adapt  by  preserving  the  ability  of  the 
system  to  monitor  resources  and  enforce  allocation  decisions.  [Ref.  2] 


15.  Resource  Revocation 

A  mobile  computing  device  owns  and  manages  all  of  its  system  resources. 
A  mobile  computing  device  may  revoke  resources  delegated  to  an  application  at 
any  time. 

Application-aware  adaptation  complicates  the  mobile  computing  device’s 
resource  management.  Some  applications  may  be  more  important  than  others 
so,  the  resource  revocation  strategy  used  by  the  mobile  computing  device  must 
be  sensitive  to  such  variations.  The  cost  of  revocation  of  the  same  system 
resource  may  vary  from  application  to  application.  For  example,  reducing  the 
bandwidth  for  one  application  might  result  in  increasing  the  amount  of  processing 
that  it  does  to  compensate.  A  similar  reduction  in  bandwidth  for  another 
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application  might  result  in  a  smaller  increase  in  processing.  A  good  resource 
revocation  strategy  must  take  into  account  these  differential  Impacts.  There  may 
be  dependencies  between  processes  that  should  be  taken  into  account,  because 
revoking  resources  from  one  process  might  cause  another  process  to  stall  or 
cause  deadlocks  to  occur. 

Revocation  of  system  resources  from  applications  is  uncommon  in  today’s 
computer  technology.  Consequently,  today  there  is  little  relevance  resource 
revocation  technique.  [Ref.  2] 


16.  Auto  Connect/Disconnect 

The  special  software  that  resides  on  the  mobile  computing  device  can 
dynamically  connect  and  disconnect  from  the  wireless  network.  In  disconnected 
operation,  a  mobile  user  continues  to  use  data  in  the  mobile  computing  device 
cache  memory.  Disconnecting  from  the  wireless  network  when  the  mobile 
computing  device  modem  is  inactive  has  two  important  benefits.  First,  wireless 
mobile  communication  costs  are  reduced  and  the  battery  life  of  the  mobile 
computing  device  is  extended  by  avoiding  wireless  transmission  and  reception. 
Disconnected  operation  allows  radio  silence  to  be  maintained  --  an  important 
capability  in  military  applications. 

Mirghafori,  N.,  and  Fontaine,  A.,  identify  and  introduce  the  following  states 
of  auto  connect  and  disconnect  operation  in  [Ref.  3]: 

•  Startup.  Startup  is  the  initial  powering  up  of  the  mobile  computing 
device.  The  mobile  computing  device  registers  with  a  mobile  support 
station  upon  entering  the  broadcast  range  of  mobile  support  station. 
Upon  registration,  the  mobile  computing  device  notifies  mobile  support 
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station  of  its  home  server  address.  The  mobile  support  station  creates 
the  proxy  process,  which  retrieves  the  mobile  user’s  profile  from  its 
home  server.  The  home  server  sends  the  pages  in  the  mobile  profile, 
marks  the  mobile  computing  device  as  a  valid  reader  of  those  pages, 
and  notes  where  to  contact  the  mobile  computing  device.  The  proxy 
receives  and  caches  the  mobile  user’s  profile,  and  then  broadcasts  the 
sub-profile  to  the  mobile  computing  device.  The  mobile  computing 
device  receives  and  caches  the  sub-profile  pages. 

•  Sleep.  There  are  two  types  of  sleep,  voluntary  sleep  and  involuntary 
sleep.  Voluntary  sleep  Is  a  planned  power-down.  In  voluntary  sleep, 
the  mobile  computing  device  cleans  its  dirty  pager,  gives  up  any  write- 
locks  it  holds,  and  informs  the  proxy  of  its  intention  to  sleep.  Then,  the 
proxy  updates  mobile  computing  device  sleep  time  and  buffers 
messages  and  invalidations  for  the  mobile  computing  device  until  the 
mobile  computing  device  wakes  up  and  is  ready  to  receive  messages 
and  invalidations.  Involuntary  sleep  is  an  unplanned  power-down,  i.e., 
a  sudden  system  crash.  In  an  involuntary  sleep  case,  the  proxy  does 
not  know  that  the  mobile  computing  device  is  not  listening  and 
continues  to  broadcast  Invalidations.  The  mobile  computing  device  will 
recover  missed  messages  upon  wakeup  by  asking  for  all  messages 
sent  after  its  disconnection  time.  If  the  sleeping  mobile  computing 
device  does  not  return,  the  mobile  computing  device  state  is  sent  to 
the  home  server  after  a  system-specific  amount  of  time  and  the  proxy 
is  killed. 

•  Wakeup.  Wakeup  is  the  powering  up  process  after  a  mobile 
computing  device  has  been  asleep.  Upon  wakeup,  the  mobile 
computing  device  waits  to  get  the  mobile  support  station’s  address. 
Upon  receiving  the  address,  the  mobile  computing  device  sends  a 
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wakeup  notification  to  the  mobile  support  station  and  requests  missed 
messages.  In  the  case  of  voluntary  sleep,  the  mobile  computing 
device  sends  its  sleep-time  to  the  mobile  support  station.  If  the  mobile 
computing  device  had  gone  to  sleep  involuntarily,  the  mobile  support 
station  proxy  uses  time-  mobile  computing  device-contacted-proxy  and 
time-invalidation-propagated  for  each  page  on  its  cache  to  calculate 
how  many  old  messages  should  be  resent. 

•  Move/Handoff.  The  mobile  computing  device  listens  for  the  mobile 
support  station’s  address.  When  the  mobile  computing  device  notices 
that  the  mobile  computing  device  is  in  a  different  region,  the  mobile 
computing  device  contacts  the  mobile  support  station.  The  mobile 
support  station  contacts  the  old  mobile  support  station  to  obtain  the 
state  of  the  mobile  computing  device  proxy.  The  old  mobile  support 
station  cleans  any  dirty  pages  to  the  home  server  and  sends  the  proxy 
state  to  the  new  mobile  support  station.  The  new  mobile  support 
station  proxy  contacts  the  home  server  to  tell  the  home  server  where  to 
contact  the  mobile  computing  device,  and  then  broadcasts  any 
invalidation  to  the  mobile  computing  device.  [Ref.  3] 


17.  Adaptive  Antennas 

In  the  past,  antenna-related  technology  has  typically  received  less 
attention  from  researchers  as  compared  to  the  current  wireless  communication 
systems.  Recently  however,  the  focus  of  modem  research  is  shifting  towards 
adaptive  (smart)  antennas. 

There  are  three  main  categories  of  adaptive  antennas:  switched  beam, 
direction  finding,  and  optimum  combining.  Tsoulos,  G.  V.  identifies  and  defines 
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these  three  adaptive  antenna  approaches  [Ref.  15].  The  switched  beam  method 
employs  a  grid  of  beams  and  chooses  the  beam,  which  gives  the  best  signal-to- 
noise  ratio.  The  direction  finding  method  focuses  on  the  acquisition  and  tracking 
of  one  parameter  and  the  directions  of  the  users.  With  the  optimum  combining 
method,  the  output  signal-to-interference-plus-noise  ratio  is  the  parameter 
optimized.  Tsoulos  summarizes  the  most  important  advantages  and 
disadvantages  of  these  techniques  as  shown  in  Table  3.1 . 

Tsoulos  makes  one  further  categorization  of  smart  antennas  as  shown  In 
Figure  3.4:  Spatial  Filtering  for  Interference  Reduction  (Figure  3.4a)  and  Space 
Division  Multiple  Access  (Figure  3.4b).  The  goal  of  spatial  filtering  for 
interference  reduction  (SFIR)  is  twofold.  (1)  Support  one  user  in  each  of  the  co¬ 
channel  cells  of  the  reuse  pattern  employed,  (2)  interference  reduction  in  the 
spatial  domain  to  achieve  a  lower  cell  repeat  pattern. 

With  space  division  multiple  access  (SDMA),  an  adaptive  antenna  system 
is  deployed  in  such  a  way  that  multiple  users  within  the  same  cell  can  operate  on 
the  same  time  (tk)  and  frequency  (fk)  channel  by  exploiting  the  spatial  separation 
of  the  users.  This  concept  is  a  dynamic  sectorization  approach  in  which  each 
mobile  computing  device  defines  its  own  sector  as  it  moves  [Ref.  15]. 

Tsoulos  summarizes  the  major  advantages  and  disadvantages  of  these 
two  methods  in  [Ref.  15]  as  shown  in  Table  3.2. 


Approach 

Advantages 

Disadvantages 

Switched 

beams 

•  Easily  deployed 

•  Tracking  at  beam  switching  rate 

•  Low  gain  between  beams 

•  Limited  interference 

suppression 

•  False  locking  with  shadowing, 
interference  and  wide  angular 
spread 

Direction 

finding 

•  T racking  at  angular  change  rate 

•  No  reference  signal  required  ratio 

•  Easier  downlink  beam-forming 

•  Lower  overall  carrier-to- 

interference  gain 

•  Susceptible  to  10  signal 
inaccuracies;  needs  calibration 

•  Concept  is  not  applicable  to 
small  cell  non-line  of  sight 

environments 

Optimum 

Combining 

•  Optimum  signal-to-interference- 
plus-noise  ratio  gain 

•  No  need  for  accurate  calibration 

•  Performs  well  even  when  the 

number  of  elements  is  smaller  than 

the  number  of  signals 

•  Difficult  downlink  beam¬ 
forming  with  frequency  division 
duplex  and  fast  time  division 
duplex 

•  Needs  good  reference  signal 
for  optimum  performance 

•  Requires  high  update  rates 

Table  3.1 :  Advantages  and  Disadvantages  of  Different  Smart  Antenna  Approaches. 
[From  Ref.  15] 
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Figure  3.4  (a)  Spatial  filtering  for  interference  reduction  and  (b)  Space  division 
multiple  access  concept.  [From  Ref.  15] 


Advantages  Disadvantages 

Space  division  -  No  need  for  revised  frequency  -  Requires  discrimination  between 

multiple  access  planning  to  exploit  capacity  gain  intra-cell  Space  division  multiple 

(SDMA)  -  Single  cell  deployment  for  local  access  users 

capacity  improvement  -  More  complex  radio  resource 

management  (angle  and  power) 


Spatial  filtering  -  No  need  for  major  air  interface  -  Relies  on  intelligent  intra-cell 

for  interference  changes  handover 

reduction  -  Minor  or  no  changes  to  the  radio  -  Large  deployments  necessary 

(SIFR)  resource  management  to  exploit  the  full  capacity 

potentials 


Table  3.2:  Advantages  and  Disadvantages  of  Space  Division  Multiple  Access 
(SDMA)  and  Spatial  Filtering  for  Interference  Reduction  (SFIR)  [From  Ref.  15] 
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B.  TRADE-OFFS  BETWEEN  COMMUNICATION  MODELS 

In  a  mobile  computing  environment,  restrictive  factors  include  limited 
battery  power  of  the  mobile  computing  device  and  the  low-bandwidth  of  the 
wireless  communication  links.  A  mobile  computing  device  communicates  with  its 
home  server  via  wireless  links,  which  are  slow  and  unreliable.  The  power 
limitation  leads  to  low-end  mobile  computing  devices  and  the  bandwidth  limitation 
leads  to  higher-end  mobile  computing  devices  with  caches. 

Wireless  communication  can  become  very  expensive  for  mobile  users  that 
perform  many  accesses  per  day.  Wireless  communication  can  be  minimized  by 
using  an  appropriate  data-allocation  scheme.  If  the  mobile  user  reads  objects 
infrequently  compared  to  the  write  rate,  then  a  copy  of  object  should  not  be 
allocated  to  the  mobile  computing  device  cache  memory.  If  a  mobile  user 
frequently  reads  an  object  and  that  object  is  updated  infrequently,  then  a  copy  of 
that  object  is  allocated  to  the  mobile  computing  device  cache.  Later,  the 
infrequent  updates  are  transmitted  from  the  home  server.  In  this  way,  mobile 
user  can  perform  read  operations  on  the  copy  of  object  locally  without  wireless 
communication. 

Caching  minimizes  wireless  communication  traffic,  because  mobile  users 
perform  read  operations  locally.  Mobile  users  can  access  data  more  quickly  if  it 
is  cached.  A  mobile  user  can  cache  its  frequently  accessed  items  into  the  mobile 
computing  device  and  then  perform  read  operations  on  its  mobile  computer 
locally.  Hence,  caching  improves  the  performance  and  availability  of  frequently 
accessed  items  for  query  processing  during  disconnection.  Caching  combined 
with  loose-read  capability  can  reduce  wireless  traffic  significantly,  since  mobile 
user’s  read  operations  are  performed  locally. 
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Differencing  along  with  caching  can  also  significantly  reduce  the  data 
transmission  rate  over  wireless  communication  links.  In  the  differencing  method, 
a  frequently  accessed  item  is  cached  on  both  the  mobile  computing  device  and 
its  home  server.  When  the  home  server  receives  a  response  from  a  web  server, 
the  home  server  computes  the  difference  between  the  web  server’s  response 
and  the  item  that  is  in  the  mobile  computing  device  cache.  Then,  the  home  sever 
sends  the  difference  to  the  mobile  computing  device  cache.  The  differencing 
technique  prevents  the  repeated  transmission  of  data  on  the  wireless  link. 

Caching  and  differencing  techniques  can  reduce  the  amount  of  data  that  is 
transmitted  over  the  wireless  link.  However,  these  techniques  do  not  address  the 
overhead  of  repeated  TCP/IP  connections  and  redundant  header  transmissions. 
The  WebExpress  that  is  a  software  system  can  reduce  the  overhead  of  repeated 
TCP/IP  connections  and  redundant  header  transmissions.  The  WebExpress 
system  eliminates  most  of  the  overhead  of  opening  and  closing  connections  by 
establishing  a  single  TCP/IP  connection  between  the  mobile  computing  device 
and  its  home  server.  In  this  manner,  the  WebExpress  system  reduces  data 
volume  and  latency  of  wireless  communications. 

Large  communication  latency  over  the  wireless  communication  links 
increases  the  cost  of  validation  of  cached  pages.  Maintaining  cache  coherence 
under  wireless  weak  connectivity  Is  an  expensive  process.  The  cost  of  cache 
coherence  can  be  minimized  by  using  Semantic  Callbacks  and  Validators 
technique.  Validity  is  maintained  through  semantic  callbacks.  Semantic 
callbacks  and  the  validation  technique  are  valuable  when  the  timing  difference 
between  local  and  remote  actions  is  too  large.  Therefore,  this  method  is  very 
useful  in  mobile  computing  and  distributed  systems. 

The  communication  between  a  mobile  computing  device  and  its  home 
server  has  to  be  kept  at  a  minimum  to  achieve  a  reasonable  response  time. 
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Reasonable  response  time  can  be  achieved  through  an  extensive  use  of  caching 
and  the  proxy  process.  The  proxy  process  manages  data  and  services  for 
mobile  users.  When  the  mobile  computing  device  sends  its  requests  to  the 
proxy,  the  proxy  retrieves  items  of  interest  on  behalf  of  the  mobile  computing 
device.  The  proxy  knows  what  the  mobile  computing  device  cache  holds. 
Therefore,  a  proxy  can  filter  unnecessary  data  and  broadcast  only  necessary 
data  to  update  mobile  computing  device  cache.  This  data  filtering  minimizes 
wireless  communication  between  a  mobile  computing  device  and  its  home 
server,  and  reduces  the  power  consumption  of  the  mobile  computing  device 
while  receiving  data.  Hence,  the  proxy  process  combined  with  a  caching 
mechanism  is  one  of  the  most  significant  means  used  to  reduce  wireless 
communication  costs. 

Data  access  profiles  further  enable  the  mobile  user  to  customize  cache 
and  better  allow  the  proxy  to  manage  data.  A  data  access  profile  is  the 
information  that  is  of  particular  interest  to  the  mobile  user.  Downloading  the 
mobile  user’s  profile  to  the  mobile  computing  device  cache  reduces  the  number 
of  requests  by  the  mobile  user.  Therefore,  fewer  requests  and  replies  are 
transmitted  over  the  wireless  link.  Hence,  wireless  communication  cost  Is 
minimized,  because  the  dollar  cost  of  sending  information  over  a  wireless  link  is 
high. 


Adaptation  insulates  mobile  users  from  the  drawbacks  of  the  mobile 
computing  environment  by  using  local  resources  In  order  to  reduce  wireless 
communication  traffic.  The  different  features  of  the  mobile  computing  devices, 
such  as  processor  speed,  memory  etc.,  rhake  it  difficult  for  servers  to  provide 
optimum  service  to  their  users.  Application-level  adaptation  provides  services  to 
the  users  regardless  of  the  capabilities  of  the  mobile  user’s  computers. 
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The  data  scheduling  method  finds  a  data  broadcast  schedule  for 
minimizing  the  access  time  needed  for  the  requests  issued  by  mobile  computing 
devices.  Access  time  is  the  time  elapsed  from  the  moment  a  mobile  user 
submits  a  request  to  the  receipt  of  data  of  interest  on  the  communication 
channel.  The  data  scheduling  method  reduces  the  access  time  by  the  efficient 
scheduling  of  wireless  broadcast  data.  Therefore,  communication  between 
mobile  computing  device  and  its  home  server  is  minimized,  and  hence  the 
communication  cost  is  reduced. 

In  wireless  computing  environments,  sending  a  few  longer  messages  is 
cheaper  than  sending  many  small  messages,  because  the  overhead  of 
connection  setup  and  teardown  is  high.  Delayed  write  mechanism  is  a  useful 
method,  which  is  used  to  minimize  the  number  of  transfers  from  the  mobile 
computing  device  to  its  home  server.  Delayed  write  technique  helps  to  conserve 
power  and  minimize  mobile  communication  cost  by  reducing  the  setup  and 
teardown  costs. 

If  the  wireless  communication  service  charge  their  mobile  users  by  the 
byte  rather  than  by  the  duration  of  the  connection,  then  data  compression 
technique  can  be  used  to  minimize  communication  cost.  Data  compression  is 
performed  before  sending  the  data  to  the  wireless  service.  If  the  data 
compression  is  effective,  then  the  resulting  stream  will  be  smaller  than  the 
original  data. 

Disconnecting  from  the  wireless  link  reduces  the  communication  cost  and 
extends  power  of  the  mobile  computing  device  when  the  modem  is  inactive.  In 
disconnected  operation,  a  mobile  user  continues  to  use  data  of  interest,  which 
resides  in  cache  memory.  Auto  connect/disconnect  operation  managed  by 
special  software  helps  saving  on  wireless  communication  cost. 
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Wireless  communication  costs  can  be  further  reduced  by  using  adaptive 
antennas.  Smart  antennas  will  provide  advantages  that  minimize  wireless 
communication,  such  as  needing  fewer  base  stations,  covering  larger  areas,  and 
improving  trunking  efficiency. 
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IV.  MOBILE  CODE,  SCRIPTS,  AND  MOBILE  AGENTS 

A.  MOBILE  CODE 


Mobile  code  denotes  the  programs  that  travel  on  a  heterogeneous 
network  from  host  to  host,  and  are  executed  on  remote  computers  in  order  to 
accomplish  goals.  Mobile  code  can  be  written  by  anyone  and  executed  on  any 
computer  that  runs  a  web  browser  regardless  of  the  operating  system  and 
hardware  configuration  of  the  computer.  Java,  Safe-Tcl,  and  TeleScript  are  the 
most  popular  languages  for  implementing  and  executing  mobile  code. 


1 .  Benefits  of  Mobile  Code 

Mobile  code  technology  is  based  on  the  principle  of  autonomy  of 
application  components.  Low-reliable  communication  channels  and  low- 
bandwidth  require  new  design  methodologies  for  applications  in  a  mobile  setting. 
In  networks,  some  regions  are  connected  through  conventional  links  while  others 
are  connected  through  wireless  links.  Therefore,  the  design  of  applications 
becomes  complex.  It  is  important  to  cope  with  frequent  disconnections  and  avoid 
generating  traffic  over  the  low-bandwidth  links.  Mobile  code  overcomes  these 
limitations  by  specifying  complex  computations  that  can  be  moved  over  a 
network. 

Mobile  code  enables  service  customization.  In  conventional  distributed 
systems,  servers  provide  a  fixed  set  of  services  a  priori  accessible  through  an 
interface  that  is  unsuitable  for  user  needs.  A  solution  to  this  problem  is  to 
upgrade  the  server  with  new  functionality,  increasing  both  its  size  and  complexity 
without  decreasing  flexibility.  The  ability  to  request  the  remote  execution  of  code 
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helps  to  increase  server  flexibility  without  affecting  the  size  or  complexity  of  the 
server. 


Mobile  code  provides  data  management  flexibility  and  protocol 
encapsulation.  In  conventional  systems,  when  data  is  exchanged  among 
components,  each  component  owns  the  code  describing  the  protocol  to  interpret 
the  data  correctly.  Mobile  code  provides  solutions  that  are  more  efficient.  If 
protocols  are  only  rarely  modified  and  are  loosely  coupled  with  data,  an 
application  may  download  the  code  that  implements  a  particular  protocol  only 
when  the  data  involved  in  the  computation  needs  a  protocol  unknown  to  the 
application.  If  protocols  are  tightly  coupled  with  the  data  they  accompany, 
components  could  exchange  messages  composed  of  both  the  data  and  the  code 
needed  to  access  and  manage  such  data. 

Finally,  mobile  code  supports  the  maintenance  and  deployment  phases  of 
the  software  development  process.  In  a  distributed  setting,  the  action  of 
installing  or  updating  an  application  on  each  computer  must  be  performed  locally 
with  human  intervention.  Mobile  code  assists  by  providing  automation  for  the 
installation  and  rebuilding  process.  Code  in  a  mobile  program  can  analyze  the 
features  of  the  local  platform  and  perform  the  correct  Installation  and 
configuration  steps. 


2.  Programming  Languages  for  Mobile  Code 
a.  Java 

Java  is  an  object-oriented  class-based  programming  language 
created  by  SUN  Microsystems.  Some  of  the  more  prominent  features  of  Java 
are  its  ability  to  interpret  of  a  pre-compiled  code  and  perform  class  loading  from 
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another  computer  over  the  Internet.  Java  is  a  well-known  and  widespread 
programming  language  for  mobile  code.  The  applet  model  has  been  created  to 
use  Java  for  mobile  code. 

Java  classes  called  applets  are  short  application  programs  that  can 
be  automatically  downloaded  and  executed  while  visiting  a  Web  page  containing 
applets.  The  applets  allow  for  active  presentation  of  information  and  interactive 
access  to  a  server.  An  applet  resides  at  the  Internet  server,  and  is  sent  to  the 
user’s  computer  upon  request  or  requirement.  Once  sent  to  the  user  computer, 
an  applet  is  executed  and  then  discarded  so  that  it  does  not  clutter  the  user’s 
computer.  Downloading  of  applets,  provided  by  the  Web  browser,  can  be 
regarded  as  a  mechanism  for  supporting  fetching  of  stand-alone  code. 

Java  attempts  to  establish  a  secure  computing  environment  by 
providing  a  layered  approach  to  software  mechanisms.  Some  safety  features 
were  added  to  eliminate  pointer  arithmetic,  unrestricted  casts,  unions,  operator 
overloading,  and  multiple  Inheritance.  Exception  handling  has  been  added  for 
the  creation  of  robust  applications.  Arrays  and  strings  are  built-in  with  range 
check.  Automatic  memory  management  has  been  added  to  guarantee  against 
pointer  errors.  Java  provides  threads  and  serialized  methods  for  concurrency. 
Java  uses  packages  that  group  a  number  of  classes  and  Interfaces.  The  Java 
library  provides  data  structures,  support  for  graphical  user  interfaces,  and  access 
to  network  communication. 

Java  Is  a  safe  language  and  guarantees  that  type  and  access  rules 
are  always  respected  enabling  a  low-level  security  policy.  Most  resources 
requiring  dynamic  access  control,  such  as  the  file  system,  are  controlled  by  a 
centralized  security  monitor.  All  security-related  methods  are  declared  final  so 
that  applications  and  applets  are  forced  to  use  the  appropriate  code.  Malicious 
applets  could  redefine  the  method  in  a  subclass  without  this  protection. 
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b.  Safe-Tcl 

Safe-Tcl  is  a  procedural  script  language  designed  to  be  simple, 
portable,  and  powerful.  Safe-Tcl  is  an  extension  of  Tcl  and  is  based  on  the  Tcl 
programming  language  used  to  support  active  e-mail.  In  Safe-Tcl,  there  are  no 
communication  or  mobility  mechanisms  at  the  language  level.  Mobility  and 
communication  must  be  achieved  using  external  support,  like  e-mail.  In  active  e- 
mail,  messages  may  include  some  code  to  be  executed  when  the  recipient 
receives  or  reads  the  message. 

In  Tcl,  every  value  is  represented  as  a  string  for  simplicity.  Tcl  is  a 
safe  language.  There  is  no  notion  of  pointers,  unchecked  array  accesses,  or 
casts.  Most  of  the  features  of  Safe-Tcl  have  been  included  in  the  latest  version 
of  the  Tcl  language,  and  a  plug-in  for  the  Netscape  browser,  allowing  scripts  to 
be  included  in  Web  pages,  like  Java  Applets.  The  goal  of  the  Safe-Tcl  is  to  be  a 
secure  and  safe  language.  The  greatest  concern  in  the  design  of  Safe-Tcl  is  a 
safe  graphical  user  interface.  Typical  applications  for  Safe-Tcl  include  advanced 
user  dialogues  for  ordering  and  voting.  The  Safe-Tcl  language  is  much  smaller 
than  other  languages  for  mobile  code  and  has  a  small  footprint. 


c.  TeleScript 

TeleScript  is  an  object-oriented  class-based  language,  conceived 
for  the  development  of  large  distributed  applications,  and  designed  for  network 
programming.  TeleScript  is  intended  to  be  a  specialized  language  for 
communication. 

There  are  two  major  types  of  processes  in  TeleScript  known  as 
places  and  agents.  A  place  passes  communications  among  agents.  An  agent  is 
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the  central  concept  in  TeleScript.  An  agent  autonomously  travels  on  the  network 
on  behalf  of  its  owner.  Mobile  processes  in  TeleScript  run  in  a  separate  domain 
and  can  only  interact  with  the  engine  in  which  they  run.  TeleScript  is  used  an 
electronic  marketplace  where  users  can  launch  their  agents  to  search  and 
reserve  data  over  the  network. 

TeleScript  includes  a  number  of  different  security  measures  to 
ensure  the  authenticity  of  agents.  Each  agent  comes  with  a  particular  authority 
or  identification  of  its  owner.  A  positive  aspect  of  TeleScript  is  that  it  tries  to  deal 
with  denial  of  service  attacks.  TeleScript  agents  have  their  own  initiative  to  travel 
and  are  more  powerful  than  Java  Applets.  However,  these  agents  are  more 
dangerous,  because  it  is  hard  or  impossible  to  control  them  once  they  have  been 
launched.  An  important  feature  of  the  TeleScript  agent  is  that  the  user  does  not 
have  to  be  connected  to  the  network  while  his  is  acting.  When  the  user 
reconnects  to  the  network,  the  agent  finishes  its  job  and  returns  to  the  user. 


d.  Umbo 

Limbo  is  a  safe  imperative  language  that  it  is  based  on  C,  and 
includes  additional  declarations  such  as  abstract  data  types,  automatic  memory 
management,  first-class  modules,  and  preemptive  scheduled  threads.  Pointer 
arithmetic  and  casts  are  not  supported  by  the  Limbo  language.  Limbo  provides  a 
library  of  standard  modules  for  secure  and  encrypted  communication,  graphics, 
and  network  communication.  Limbo  provides  type-safe  linking  at  the  user  level 
by  way  of  the  built-in  support  for  dynamic  linking  of  modules. 
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e.  Obliq 

Obliq  is  a  dynamically  typed,  lexically  scoped,  object-based 
language,  designed  for  distributed  object-oriented  computations.  Because  Obliq 
is  dynamically  typed,  and  type  errors  are  caught  by  Obliq  and  propagated  to  the 
origin  site.  Obliq  belongs  to  a  class  of  object-oriented  languages  in  which  objects 
are  created  by  copying  existing  objects  (the  prototypes).  Any  value  can  be 
transmitted  between  hosts,  but  objects  are  local  to  a  site  and  are  not  considered 
as  values.  Object  migration  can  be  programmed  with  closure  transmission, 
object  copying,  and  aliasing. 

No  special  provision  for  security  is  in  Obliq  at  the  time  of  writing 
Obliq  language.  Besides  the  basic  use  of  scope  to  control  what  is  exported, 
Obliq  supports  weak  mobility  using  a  mechanism  for  synchronous  shipping  of 
standalone  code. 


f.  Objective  CamI 

Objective  CamI  Is  a  functional  language,  originating  from  CamI,  and 
has  been  used  as  a  language  for  mobile  code  in  the  development  of  the  MMM 
Web  browser.  Objective  CamI  includes  imperative  features,  such  as  a  class- 
based  object  system,  references  and  assignment  that  are  all  integrated  within  a 
functional  core.  Objective  CamI  offers  automatic  type  reconstruction,  and  a 
higher-order  module  system  in  which  modules  have  signatures.  Objective  CamI 
includes  support  for  concurrency  through  threads  and  class-based  object 
orientation  through  typing  discipline. 

Objective  CamI  includes  library  support  for  dynamic  linking  of  object 
files.  The  dynamic  linking  used  for  applets  constrains  the  use  of  the  primitives 
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that  are  considered  dangerous.  The  advantage  of  Objective  CamI  is  that  it 
supports  several  programming  paradigms  such  as  imperative,  functional,  and  is 
object  oriented. 


3.  Mobile  Code  Security 

In  the  past,  a  computer  user  needed  to  use  the  File  Transfer  Protocol 
(FTP)  in  order  to  download  an  application  over  the  Internet,  both  installing  and 
executing  the  application  while  relying  on  his  own  understanding  of  the  process. 
However,  by  using  the  World  Wide  Web,  these  tasks  have  become  transparent 
to  the  user,  as  mobile  codes  such  as  Java  Applets  and  scripts  can  be 
automatically  downloaded  and  executed  on  the  user’s  machine  without  the 
knowledge  of  the  user.  One  drawback,  although,  is  that  the  security  concerns 
become  especially  strong  in  this  environment,  because  someone’s  application  is 
running  on  the  user  computer  without  the  approval  and  knowledge  of  the  user, 
and  the  presence  of  the  downloaded  mobile  code  makes  the  user’s  computer 
vulnerable  to  attack. 

Hostile  mobile  codes  perform  hostile  activities  on  the  user’s  computer,  and 
can  harm  the  destination  host  while  being  executed  there.  Hostile  mobile  codes 
may  limit  the  availability  of  the  system  resources,  attack  the  integrity  of  the 
system,  violate  the  privacy  of  the  user,  or  merely  annoy  or  inconvenience  the 
user. 


The  following  approaches  have  emerged  to  provide  assurance  against  the 
hostile  mobile  codes; 

•  Firewalling 

•  Sandbox 

•  Code  Signing 
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Proof-Carrying  Code 


If  these  techniques  are  considered  individually,  none  of  them  can  provide 
a  high  level  of  protection  for  the  user’s  system  resources  from  the  hostile  mobile 
code  attacks.  For  instance,  code-singing  and  sandbox  models  are  being  used 
together.  Combining  these  two  approaches  with  a  firewall  mechanism  provides 
higher  security  for  the  system  resources. 


a.  Firewalling 

The  objective  of  firewalling  Is  to  protect  the  user  from  network- 
based  threats  and  attacks  by  providing  a  single  control  point  where  security  can 
be  imposed.  A  firewall  provides  a  blockade  between  an  internal  network  and  an 
external  network  that  is  either  insecure  or  untrusted. 

A  firewall  system  consists  of  proxy  servers  and  screening  routers. 
The  screening  router  applies  a  set  of  rules  and  filters  incoming  IP  packets  based 
on  information  that  is  available  in  packet  headers.  A  proxy  server  runs  on  a 
firewall  system  in  order  to  perform  a  TCP/IP  function  as  a  proxy  on  behalf  of  the 
user.  When  a  user  requests  a  Web  page  by  using  his  Web  browser,  his  request 
is  sent  to  a  proxy.  The  proxy  takes  the  user’s  request  and  forwards  it  to  the 
related  server,  then  receives  the  requested  Web  page  from  that  server.  When 
the  Web  page  is  received,  the  proxy  server  parses  the  Web  page  in  order  to 
identify  applet  tags.  For  each  identified  tag,  the  proxy  replaces  the  named  applet 
with  the  name  of  a  trusted  graphics  server  applet  stored  to  the  user’s  Web 
browser.  The  proxy  sends  this  modified  page  to  the  Web  browser,  and  retrieves 
the  named  applet  and  modifies  its  byte  code  to  use  the  graphics  server  in  the 
user’s  browser  for  all  input  and  output,  for  each  identified  applet  tag. 


78 


Subsequently,  the  proxy  server  forwards  the  modified  applet  to  the  graphic 
servers  of  the  browser. 

The  firewalling  approach  involves  choosing  whether  to  run  mobile 
code  on  the  user  computer  or  not  and  deciding  where  the  mobile  code  enters  the 
user’s  domain.  Running  a  firewall  or  Web  proxy  may  be  useful  to  identify  and 
examine  mobile  codes,  and  decide  whether  or  not  to  run  mobile  code  to  serve 
them  to  the  user.  The  proxy  prevents  hostile  mobile  code  to  access  the  user’s 
resources. 


b.  Sandbox  Model 

There  are  two  types  of  applets  that  cause  problems  for  networks: 
malicious  applets  and  attack  applets.  Malicious  applets  cause  inconveniences 
rather  than  an  actual  loss  for  the  computer  by  monopolizing  the  resources  of  the 
computer.  Attack  applets  are  the  most  dangerous  mobile  codes  and  try  to  exploit 
software  bugs  In  the  user’s  computer. 

A  sandbox  is  an  area  of  the  computer  In  which  the  mobile  codes 
are  run  in  order  to  protect  the  system  resources  from  viruses  and  Trojan  horses 
that  may  attack  system  resources.  The  sandbox  model  provides  for  the 
restricting  of  access  to  the  file  system  and  controls  the  establishment  of  network 
connections.  The  sandbox  security  model  constrains  the  privileges  of  mobile 
code  executing  within  a  Web  browser,  and  prohibits  untrusted  mobile  code  from 
using  any  system  resources  of  the  user  computer.  The  purpose  of  the  sandbox 
model  is  to  contain  hostile  mobile  code  in  the  user  computer  in  such  a  way  that 
mobile  code  cannot  cause  any  problem  for  the  executing  environment. 
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Java  applications  are  partitioned  into  two  groups:  trusted  and 
untrusted  applications.  Every  local  application  is  considered  to  be  trusted  and 
every  remote  application,  such  as  a  Java  Applet,  Is  considered  to  be  untrusted. 
Trusted  applications  have  full  access  rights  to  the  system  resources  such  as  the 
file  system  and  the  network,  and  run  in  an  environment  without  any  restrictions. 
However,  untrusted  applications  run  in  a  sandbox  that  allows  them  to  access 
only  certain  system  resources. 

The  most  common  implementation  of  a  sandbox  is  in  the  Java 
interpreter  Inside  Web  browsers.  The  security  manager,  the  class  loader,  and 
the  verifier  are  three  main  components  of  the  Java  Interpreter.  The  class  loader 
converts  remote  byte  codes  into  data  structures.  Any  class  loaded  from  the 
external  network  requires  an  associated  class  loader.  Thus,  the  only  way  to  add 
remote  classes  to  a  machine  Is  via  the  class  loader. 

The  verifier  performs  static  checking  on  the  remote  code  before  it  is 
downloaded.  The  verifier  checks  that  the  remote  code  does  not  overflow  or 
underflow  the  operand  stack,  and  that  the  remote  code  does  not  illegally  convert 
data  types  and  does  not  use  registers  Improperly. 

The  security  manager  provides  flexible  access  to  potentially 
dangerous  system  resources.  Safe  operations  are  always  allowed,  but  harmful 
operations  cause  an  exception.  A  Web  browser  developer  or  a  system 
administrator  can  control  an  applet’s  access  to  computer  resources  by  modifying 
the  security  manager. 

An  error  in  one  of  these  three  components  causes  a  violation  of  the 
security  policy  --  the  biggest  problem  of  the  Java  sandbox. 
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c.  Code  Signing 

/ 

In  the  code  signing  method,  the  user  has  a  list  of  trusted  entities. 
When  a  mobile  code  Is  received  from  an  external  network,  the  user  verifies  that 
mobile  code  was  signed  by  an  entity  on  that  list.  Mobile  code  is  run  on  the  user 
computer,  if  it  is  on  the  user’s  entity  list. 

JavaScript  1 .2  includes  the  notion  of  code  signing.  The  creator  of  a 
script  can  add  a  digital  signature  to  it.  A  signed  script  is  able  to  request 
expanded  privileges,  gaining  access  to  restricted  system  resources. 


d.  Proof-Carrying  Code 

Proof-carrying  code  ensures  the  protection  of  the  system 
resources.  Proof-carrying  code  statically  verifies  a  proof  and  checks  mobile  code 
to  make  sure  that  mobile  code  does  not  violate  safety  policies  when  the  mobile 
code  is  loaded.  After  the  proof  is  verified,  the  mobile  code  can  run  on  the  user 
computer.  For  example,  it  is  possible  to  construct  a  proof  that  checks  mobile 
codes  whether  or  not  mobile  codes  contain  buffer  overflows. 

The  major  drawback  is  that  the  proofs  are  written  by  hand  in 
assembly  language.  However,  research  is  still  underway  to  construct  software 
tools  for  the  automation  of  the  proof-carrying  code  generation. 
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B.  SCRIPTS 


A  script  is  a  record  that  consists  of  a  sequence  of  commands.  A  script 
can  be  executed  as  if  it  were  an  executable  program.  When  a  script  is  executed, 
the  commands  in  the  script  file  are  executed  one-by-one  in  order.  Scripts  are 
specifically  modeled  for  representing  stereotyped  sequences  of  events  and 
originally  used  in  natural  language  processing.  They  are  commonly  used  to 
customize  or  add  Interactivity  to  Web  pages  on  the  World  Wide  Web.  Scripts 
control  and  coordinate  collections  of  behaviors.  A  script  is  characterized  by  its 
event  list.  The  events  are  treated  as  symbols,  an  event  sequence  becomes  a 
string,  and  a  script  can  be  represented  as  a  language  consisting  of  a  single 
string. 


A  script  has  five  components:  casual  chain,  main  concept,  places,  actors, 
and  props.  A  sequence  of  events  in  a  script  is  called  a  causal  chain.  The  causal 
chain  serves  as  a  default  sequence  and  represents  exceptions  to  a  step  in  the 
sequence.  The  causal  chain  can  have  pointers  to  subscripts,  which  handle  these 
exceptions.  A  script  includes  places  where  the  causal  chain  is  valid.  Props  are 
the  objects  used  by  the  actors  in  order  to  follow  the  causal  chain  and  attempt  to 
meet  the  main  concept.  The  props  and  the  actors  are  variables,  which  are 
instantiated  at  run  time. 


1.  Scripting  Languages 

A  scripting  language  Is  a  limited  programming  language  designed  to 
extend  the  capabilities  of  another  application  and  to  perform  special  or  limited 
tasks.  Scripting  languages  such  as  Tcl,  Perl,  Python,  and  Visual  Basic  assume 
that  a  collection  of  useful  components  already  exist  in  other  programming 
languages  and  are  intended  primarily  for  connecting  components  rather  than 
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writing  applications.  Scripting  languages  are  generally  used  to  extend  the 
features  of  components,  but  are  rarely  used  for  data  structures  and  complex 
algorithms.  Scripting  languages  are  referred  to  as  system  Integration  languages 
or  glue  languages,  which  allow  rapid  development  of  gluing-oriented  applications. 

System  programming  languages  such  as  Java,  Ada,  and  C++  are  usually 
compiled,  but  scripting  languages  are  interpreted.  Interpretation  provides  rapid 
turnaround  during  development  by  eliminating  compile  times.  The  benefits  of  the 
scripting  depend  on  the  application. 

Scripting  languages  have  become  integral  components  in  system 
development  because  of  a  shift  In  the  application  mix  toward  gluing  applications. 
For  example,  the  growth  of  the  Internet  has  popularized  scripting  languages. 
The  Internet,  serving  as  a  gluing  tool,  does  not  create  any  new  data.  Rather  it 
makes  data  accessible  to  a  number  of  existing  Web  pages.  A  scripting  language 
makes  it  possible  for  all  the  connected  components  to  work  together  to  perform 
Internet  programming  tasks.  For  instance,  JavaScript  Is  a  popular  scripting 
language  for  developing  Web  pages.  Another  example  is  the  graphical  user 
interfaces  (GUIs)  that  are  being  used  to  glue  together  applications  to  make 
connections  between  a  collection  of  graphical  controls  and  the  internal  functions 
of  the  application.  All  of  the  best  rapid  development  of  GUIs  is  based  on 
scripting  languages,  such  as  Tcl  and  Visual  Basic. 


a.  JavaScript  Language 

JavaScript  is  a  simple  object-based  scripting  language  that  is 
interpreted  by  Web  browsers.  JavaScript  has  no  classes  or  inheritance  features. 
Instead,  it  uses  user-defined  and  built-in  extensible  objects.  The  JavaScript 
programs  are  integrated  with  a  Hypertext  Markup  Language  (HTML)  page,  and  a 
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Web  browser  interprets  and  executes  the  JavaScript  code.  A  computer  user  can 
type  text,  press  buttons,  and  perform  calculations  with  the  help  of  the  JavaScript 
enabled  Web  pages. 

JavaScript  models  the  browser  window  and  browser  state 
information  by  providing  an  object-instance  hierarchy.  For  instance,  a  navigator 
object  provides  information  about  the  browser  to  a  script,  and  a  history  object 
represents  the  browsing  history  in  the  browser  window.  JavaScript  automatically 
creates  an  object-instance  hierarchy  of  the  HTML  document  elements  when  it  is 
loaded  by  the  browser.  JavaScript  uses  dynamic  binding  to  check  object 
references  at  runtime.  JavaScript  is  loosely  typed,  so  variable  data  types  are  not 
declared. 


JavaScript  code  is  interpreted  by  Web  browsers  rather  than 
compiled.  This  means  that  JavaScript  does  not  need  a  compiler,  but  does  need 
an  interpreter.  JavaScript  code  is  embedded  In  HTML,  and  its  execution 
depends  on  the  availability  of  the  Interpreter.  Simple  applications  can  be  created 
and  can  easily  interact  with  HTML  documents. 

JavaScript  provides  the  scriptwriter  with  compact  pre-built  tools  that 
enhance  the  interactions  between  the  users  and  an  HTML  page.  These  compact 
pre-built  tools  allow  responses  page  navigation,  form  input,  and  other  events. 
Responses  to  the  user  actions  can  be  invoked  by  JavaScript  without  network 
transmissions.  This  is  the  major  advantage  of  JavaScript  over  scripting 
languages.  If  the  user’s  interactions  with  a  Web  page  are  processed  on  the 
user’s  computer  with  JavaScript,  then  excess  Internet  traffic  is  avoided. 
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2. 


Using  Scripts  in  Mobiie  Computing 


The  main  reason  for  using  scripts  in  mobile  computing  is  to  delegate  tasks 
from  a  mobile  computer  to  a  network  resource.  Scripts  are  task  executors. 
Tasks  are  designed  as  Scripts  by  the  mobile  host  and  then  sent  to  a  mobile 
agent  to  strengthen  the  weak  flow  of  mobile  communication. 

There  are  two  kinds  of  scripts:  Personal  Script  and  Remote  Importable 
Script  (RIS).  Personal  Script  is  designed  by  the  mobile  user  and  sent  to  the 
wired  network  in  order  to  delegate  the  user’s  tasks.  Remote  Importable  Script  is 
delivered  by  an  external  network  server  to  personal  scripts  or  other  remote 
importable  scripts.  Remote  Importable  Scripts  can  be  viewed  as  Java  Applets 
imported  from  a  server  over  a  wired  network.  Thus,  these  scripts  increase  the 
functionalities  of  the  Web  browser. 


3.  The  Advantages  of  Using  Remote  Importable  Scripts 

One  of  the  greatest  limitations  of  the  mobile  computing  environment  is  the 
weak  flow  of  information  caused  by  low-bandwidth  and  frequent  disconnections. 
Remote  Importable  Scripts  minimize  wireless  communication  by  importing 
remote  running  scripts  on  the  wired  network,  which  reduces  the  use  of  the 
wireless  link  for  a  script  import.  Importing  a  remote  script  during  the  execution  of 
a  personal  script  allows  a  personal  script  to  require  the  loading  of  a  remote  script. 
Then,  it  can  receive  results  and  eventually  to  continue  executing. 

Remote  scripts  are  delivered  by  servers  on  demand  during  the  execution 
time  of  a  personal  script.  The  mobile  user’s  personal  script  must  be  sure  to  get 
the  latest  release  of  the  remote  script.  A  global  update  phase  among  servers 
ensures  the  consistency  of  a  remote  importable  script. 
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Another  advantage  of  importing  a  remote  script  allows  the  mobile  user  to 
have  a  description  of  a  way  to  access  a  network  resource.  For  instance,  the 
remote  script  can  describe  the  list  of  servers,  which  must  be  contacted. 


4.  Script  Security 

When  a  remote  importable  script  is  imported,  untrusted  executable  code 
comes  from  an  external  server  and  it  is  integrated  at  the  execution  of  the  calling 
mobile  user’s  personal  script.  This  executable  mobile  code  has  to  be  interpreted 
and  analyzed  to  prevent  access  to  unauthorized  data.  Remote  importable  script 
has  the  right  to  access  the  data  space  contained  in  the  mobile  user’s  personal 
script;  the  remote  importable  script  has  the  same  read,  write,  and  modification 
rights  on  the  data  as  the  personal  script. 

Thus,  security  issues  arise  and  access  control  policy  has  to  be  checked 
during  the  execution  of  the  personal  script.  Therefore,  a  remote  script  must  have 
a  restricted  data  space,  and  only  data  used  as  parameters,  (i.e.,  read  and  write) 
must  be  accessible  from  a  remote  script  for  secure  execution.  Only  data  sent  as 
execution  parameters  has  to  be  readable  and  modifiable  with  respect  to  the 
given  read  and  write  rights.  When  a  remote  importable  script  is  requested  by  a 
personal  script,  the  remote  importable  script  may  call  another  remote  importable 
script.  This  type  of  call  should  be  prohibited,  because  the  security  property  may 
not  be  transitive. 

Security  issues  must  be  taken  into  account  for  remote  importable  scripts, 
which  require  the  use  of  certification,  payment,  confidential  data,  etc.  Security 
requirements  change  according  to  the  type  of  the  remote  importable  scripts. 
Security  requirements  depend  upon  the  specific  type  of  remote  importable  script 
is  imported.  A  classification  of  remote  importable  scripts  is  needed  so  that  the 
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protocol  can  request  from  the  remote  script  server  and  that  the  behavior  of  the 
remote  script  loader  is  defined  to  support  the  classification  scheme. 


5.  Classification  of  Remote  Importable  Scripts 

a.  Protected  and  public  remote  importable  scripts 

A  public  script  is  sent  to  any  user,  but  a  protected  script  is  sent  to 
only  authorized  users.  A  pair  of  keys  (Kc,  Kd)  is  used.  Kd  is  the  private 
deciphering  key  and  belongs  to  the  agent.  Kc  is  a  public  key.  Consequently,  the 
server  sends  the  script  enciphered  by  Kc.  Then,  the  responsible  object  uses  Kd 
that  is  available  to  the  agent.  In  this  case,  the  protected  script  is  located  on  the 
agent’s  server  cache  memory  and  must  not  be  stored  in  the  cache  memory  of  the 
mobile  user. 


b.  General  and  personalized  remote  importable  scripts 

The  contents  of  the  general  importable  scripts  are  identical  for  all 
users.  The  contents  of  the  personalized  importable  scripts  are  adapted  to  the 
user.  Personalization  can  be  achieved  with  the  help  of  generation  parameters 
that  determine  all  phases  of  the  script  generation.  A  script  called  with  generation 
parameters  can  be  viewed  as  a  personalized  script,  and  a  script  called  without 
generation  parameters  is  considered  a  general  script. 

c.  Paying  remote  importable  scripts 

During  script  delivery,  a  final  transaction  is  required  in  order  to 
obtain  a  paying  script.  If  the  transaction  takes  place  after  the  purchase  of  an 
access  right,  an  identification  /  authentication  is  required. 
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d.  Certified  remote  importabie  scripts 


Certified  scripts  provide  a  higher  level  of  security,  and  authenticity 
is  needed  for  a  certified  script.  Authenticity  verification  can  be  carried  out  by  the 
object  in  charge  of  the  script  import.  A  pair  of  enciphering-deciphering  keys  (Kc, 
Kd)  is  used  for  authenticity.  K©  is  the  private  key  belonging  to  a  desired  script 
server.  Kd  is  the  deciphering  public  key.  When  a  certified  script  is  requested,  the 
responsible  object  sends  the  request  to  the  script  server.  The  script  server 
returns  the  desired  certified  script  enciphered  by  Kc.  The  object  in  charge  of  the 
script  import  deciphers  the  script  using  the  public  deciphering  key. 

e.  Node  and  terminai  remote  importabie  scripts 

When  a  remote  script  import  is  requested,  this  script  may  require 
the  import  of  other  remote  scripts.  When  a  public  remote  importable  script 
requests  another  certified  script,  the  operation  cannot  be  executed  because  of 
authenticity.  If  the  script  is  a  certified  script,  then  the  sender  of  the  certified  script 
is  the  trusted  server.  When  a  certified  script  requests  another  script  from  another 
server,  the  transitivity  relationship  in  the  entrusted  domain  is  not  always 
guaranteed.  Therefore,  two  kinds  of  scripts  are  needed,  namely  node  and 
terminal  remote  importable  scripts  [Ref.  17]. 


6.  Using  Cache  Memory  with  Scripts 

When  a  personal  script  requires  a  remote  importable  script,  this  remote 
script  is  imported  from  an  external  network,  executed  on  the  user  computer,  and 
then  removed.  However,  sometimes  a  personal  script  may  frequently  request 
the  same  remote  importable  script.  In  this  particular  case,  a  caching  mechanism 
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can  be  used  to  minimize  data  transmission  instead  of  re-importing  the  same 
remote  script. 

Some  remote  importable  scripts  may  be  commonly  requested  by  personal 
scripts  attached  to  different  mobile  agents.  For  the  purpose  of  ease  of 
accessibility,  these  remote  scripts  are  stored  in  several  cache  memories  on  the 
same  server.  If  a  personal  script  needs  a  remote  script,  the  personal  script  uses 
the  cache  manager  located  on  the  acceptor  server.  If  a  personal  script  requests 
a  remote  script  from  the  cache  manager,  and  this  remote  script  Is  stored  in  the 
cache  memory,  a  message  is  sent  to  the  server  to  check  If  the  cached  script  is 
consistent  with  the  remote  script.  If  so,  the  cache  manager  sends  the  script. 
Otherwise,  the  script  delivered  by  the  server  is  returned. 

Guaranteed  consistency  duration  can  be  associated  with  most  of  the 
remote  scripts.  The  script  manager  uses  this  duration  to  determine  whether  or 
not  the  script  stored  in  the  cache  memory  is  consistent.  The  script  is  removed 
from  the  cache  memory  when  it  Is  stale.  No  extra  communication  traffic  is 
required  within  these  consistency  durations. 
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C.  MOBILE  AGENTS 


An  agent  is  active,  autonomous,  and  acts  on  behalf  of  a  mobile  user  or 
another  agent.  Agents  provide  a  very  critical  service  for  the  user  by  searching 
information,  filtering  and  extracting  data  from  the  external  networks. 

An  agent  can  simply  sit  in  its  own  environment  and  communicate  through 
conventional  means,  such  as  messaging  and  remote  procedure  calling.  This 
kind  of  agent  is  called  stationary  agent,  and  executes  only  on  the  system  on 
which  it  begins  execution.  For  example,  word  processors  that  have  spell¬ 
checking  programs,  which  alert  the  computer  user  when  the  user  types  a 
misspelled  word,  have  agents  that  correct  the  misspelling.  As  another  example, 
an  agent  positioned  in  the  stationary  network  may  keep  track  of  incoming  emails, 
acknowledge  receipt,  and  reply  to  messages.  If  a  stationary  agent  needs  data 
that  is  not  available  on  Its  own  environment,  then  the  stationary  agent  interacts 
with  an  agent  on  another  system  by  using  a  communication  mechanism  such  as 
remote  procedure  calling. 

However,  a  mobile  agent  is  free  to  travel  among  the  servers  in  the 
external  networks.  A  mobile  agent  is  a  piece  of  software  program  associated 
with  a  mobile  user,  and  accepts  tasks  from  the  user  to  overcome  drawbacks  of 
the  mobile  environment.  A  mobile  agent  is  composed  of  code  and  data,  and  can 
navigate  autonomously  over  the  heterogeneous  networks  without  the  need  for 
continuous  interaction.  A  mobile  agent  can  transport  Its  code  and  attribute 
values  (state)  that  help  it  determine  what  to  do  when  it  resumes  execution  at  its 
destination. 

Mobile  agents  are  very  useful  for  mobile  computing  by  acting  as  an 
interface  between  the  mobile  user  and  the  external  networks.  An  external 
network  server  that  has  to  transfer  messages  to  the  mobile  user  sends  these 
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messages  to  the  associated  mobile  agent,  and  this  mobile  agent  forwards  the 
messages  to  the  mobile  user.  This  mobile  agent  Is  responsible  for  mobility 
management. 

The  mobile  user  has  to  disconnect  his  mobile  computer  frequently 
because  of  the  weak  energy  autonomy  of  his  mobile  computer.  Therefore,  the 
mobile  user  is  unreachable  from  external  networks.  A  mobile  user  has  to  wait  for 
the  end  of  the  data  delivery  to  be  able  to  disconnect  his  mobile  computer  when 
he  requests  data  from  an  external  server.  A  mobile  agent  acts  as  the  mobile 
user’s  representative  and  is  always  connected  to  the  related  external  server. 
Thus,  the  mobile  agent  is  able  to  receive  requested  data  even  if  the  mobile  user’s 
computer  is  disconnected.  After  the  mobile  agent  is  submitted,  the  mobile  user 
can  be  disconnected  from  the  network.  As  a  result,  a  mobile  agent  can  also  save 
on  transmission  costs  that  can  be  substantial  over  wireless  links. 


1.  Benefits  of  Mobile  Agents 

Mobile  agents  can  be  customized  according  to  the  mobile  users’  needs, 
and  then  sent  to  the  external  network  servers  in  order  to  take  the  advantage  of 
wireless  links.  It  is  very  convenient  for  a  mobile  user  to  delegate  his  tasks  to  a 
mobile  agent,  which  will  execute  the  user’s  tasks  while  the  mobile  user  Is 
disconnected  from  the  external  networks.  The  mobile  agent  returns  to  the  mobile 
user’s  computer  from  its  current  location  when  the  mobile  user  is  connected  to 
the  external  network.  This  feature  of  the  mobile  agents  helps  to  reduce  the 
mobile  computer’s  power  consumption  and  minimizes  communication  costs  over 
the  wireless  communication  links. 

Mobile  agents  are  useful  for  minimizing  the  flow  of  information  between 
networks.  Data  should  be  processed  locally  instead  of  transferring  over  the 
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network  when  huge  amount  of  data  stored  at  external  network  servers.  Mobile 
agents  minimize  the  network  communication  by  allowing  mobile  users  to 
package  a  conversation  and  transport  it  to  an  external  network  server  where 
interactions  take  place  locally.  Mobile  agents  have  a  higher  degree  of 
survivability,  because  they  transport  both  state  and  code  encapsulated  within 
their  abstractions.  It  is  possible  for  a  mobile  agent  to  leave  a  network  and 
execute  on  another  network,  if  a  network  partially  fails.  Mobile  agents  can  adapt 
dynamically  by  sensing  the  execution  environment  and  reacting  independently  to 
changes.  Therefore,  a  mobile  agent  can  maintain  its  optimal  configuration  for 
fulfilling  the  tasks  that  were  assigned  by  the  mobile  user.  Mobile  agents  are 
fault-tolerant.  If  a  network  server  being  shut  down,  all  mobile  agents  executing 
on  that  server  are  warned  and  given  time  to  transport  themselves  to  another 
server  to  be  able  continue  their  operations. 


2.  Mobile  Agent  Concepts 

Electronic  marketplace  requires  a  network  that  will  let  customers  and 
providers  of  services  find  one  another  and  transact  business  electronically. 
Mobile  agents  act  on  their  user’s  behalf  to  search  information,  find  the  best 
airfares,  and  send  and  receive  messages,  so  on. 

A  mainframe  computer  may  function  as  a  shopping  center  for  a  mobile 
agent,  (i.e.,  a  special  place  where  an  agent  can  purchase  airline  tickets).  Each 
agent  occupies  a  place,  or  a  context  in  which  an  agent  executes.  An  agent  can 
move  autonomously  from  one  place  to  another  occupying  different  places  at 
different  times.  The  typical  place  is  permanently  occupied  by  only  one  agent. 
This  permanent  agent  represents  the  place  and  provides  its  service,  (i.e.,  airline- 
ticketing  agent  provides  Information  about  flights,  airfares,  and  sells  airline  tickets 
to  the  customers).  Travel  allows  a  mobile  agent  to  obtain  a  service  and  return 
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back  to  its  starting  place.  For  example,  a  user’s  agent  may  travel  from  the  user 
computer  to  a  special  ticketing  place  to  obtain  airline  tickets,  and  then  the  agent 
may  travel  to  the  user  computer  back  to  describe  the  ticket  information. 

Telescript  language  lets  a  computer  package  an  agent,  its  attribute  values 
and  its  code  so  that  the  agent  can  be  transported  to  another  computer.  The 
agent  decides  when  such  transfer  is  required.  If  travel  cannot  take  place,  the 
agent  declares  an  exception.  If  travel  Is  possible,  then  the  agent  finds  its  next 
instruction  to  be  executed  at  its  destination.  Thus,  language  reduces  networking 
to  a  single  instruction. 

Meetings  motivate  agents  to  travel.  Two  mobile  agents  are  allowed  to 
meet  if  they  are  in  the  same  place.  A  meeting  lets  mobile  agents  call  one 
another’s  procedures  in  the  same  computer.  An  agent  may  travel  to  a  place  in 
an  external  server  to  meet  the  stationary  agent  of  that  server  providing  the 
service  offered.  If  the  meeting  succeeds,  the  two  agents  are  placed  in  contact 
with  one  another,  and  if  meeting  fails,  the  agents  throw  exceptions. 

A  connection  allows  the  agents  to  exchange  information  at  a  distance.  If 
the  connection  is  made,  the  two  agents  are  granted  access  to  each  other.  A 
connection  between  two  agents  in  different  places  is  made  for  the  benefit  of 
human  user  interactions.  For  example,  a  mobile  agent  that  travels  in  search  of 
airline  tickets  may  send  an  agent  to  the  user  computer  asking  for  the  seat 
preferences  of  the  user. 

The  authority  of  an  agent  in  the  electronic  world  is  the  Individual  or 
organization  In  the  physical  world  that  it  represents.  Authority  system  lets  one 
agent  discern  the  authority  of  another.  A  server  must  know  the  authority  of  any 
procedure  to  control  access  to  its  files.  This  issue  is  very  important  for  network 
security.  The  system  verifies  the  authority  of  an  agent  whenever  it  travels  from 
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one  region  of  the  network  to  another,  and  may  demand  reliable  cryptographic 
forms  of  proof  to  verify  the  authority  of  an  agent.  Checking  and  controlling  the 
mobile  agent  authorities  helps  prevent  viruses  by  denying  agents  that  contain  the 
characteristics  of  a  virus. 

Authorities  can  limit  the  capabilities  of  agents  by  assigning  permits,  or 
data  that  grants  capabilities,  to  agents.  A  permit  can  grant  the  right  to  execute  a 
certain  instruction  and  grant  the  right  to  use  a  resource  in  a  certain  amount. 
Permits  protect  authorities  by  limiting  the  effects  of  malicious  agents. 


3.  The  Architecture  of  a  Mobile  Agent  System 

When-Shyen,  E.C;  Lien,  Y.N.;  Shu,  H.T.,  and  Liu,  H.  propose  a  mobile 
agent  infrastructure  to  support  mobile  computing  in  their  paper,  “Mobility  and 
Management  Support  for  Mobile  Agentd’  [Ref.  29]. 

The  authors  focus  on  agent  management  and  network  transport  for  the 
purposes  of  supporting  mobile  computing.  Figure  4.1  represents  the 
infrastructure  of  a  mobile  agent  system. 

When  a  mobile  user  submits  a  request  for  services,  a  user  agent  Is 
created  by  a  mobile  supporting  server.  The  mobile  supporting  server  accepts  the 
request  from  the  mobile  user  and  invokes  an  instance  of  the  user  agent  on  the 
mobile  user’s  behalf  to  carry  out  the  requests.  Then,  the  user  agent  queries  the 
directory  server  to  obtain  the  location  Information  of  the  agent  server  to 
determine  where  the  requested  services  can  be  fulfilled.  The  directory  server 
represents  the  resources  and  the  services  of  the  service  agents.  The  agent 
server  provides  the  resources  needed  for  mobile  agents  to  carry  out  their  tasks. 
The  management  server  holds  the  status  of  the  mobile  agents  and  responds  to 
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the  queries  in  order  to  report  the  status  of  the  agents.  A  service-resource  agent 
is  the  stationary  agent  in  the  agent  senrer  where  in  the  resources  or  services  are 
provided. 

Wong,  D.;  Paciorek,  N.;  and  Moore,  D.  propose  a  generic  java-based 
agent  architecture  in  their  paper  “Java-based  mobile  agentd’  [Ref.  19].  Their 
mobile  agent  architecture  consists  of  six  components:  an  agent  manager,  a 


95 


reliability  manager,  an  application  gateway,  and  a  directory  manager.  (Figure  4.2 
represents  the  generic  mobile  agent  system  architecture.) 


Figure  4.2:  Generic  Mobile  Agent  System  Architecture.  [From  Ref.  19] 


The  agent  manager  receives  agents  from  external  networks  for  execution 
on  the  local  server  and  sends  mobile  agents  to  remote  servers.  The  agent 
manager  serializes  the  agent  and  its  state,  and  then  passes  the  agent  to  the 
agent  manager  on  the  destination  server.  When  the  agent  manager  receives  an 
agent,  it  reconstructs  the  agent,  and  then  creates  its  execution  context. 
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The  security  manager  authenticates  the  agent  before  the  agent’s 
execution.  The  security  manager  protects  the  host  and  the  mobile  agents 
against  unauthorized  access.  The  security  manager  can  also  protect  agents  by 
encrypting  them  before  transmission.  The  security  manager  also  allows 
authorized  agents  to  pass  firewalls. 

The  reliability  manager  ensures  the  robustness  of  the  mobile  agent 
system,  shields  agents  from  the  effects  of  the  server,  and  guarantees  the 
persistence  of  state  associated  with  agents.  The  inter-agent  communications 
manager  facilitates  communication  between  mobile  agents  through  a  network. 
The  existence  of  multiple  associate  agents  mandates  inter-agent  communication. 

The  application  gateway  serves  as  a  secure  entry  point  in  which  agents 
can  interact  with  application  servers.  An  arriving  agent  accesses  resident 
servers  through  this  gateway. 


4.  Languages  for  Mobile  Agents 

Language  for  the  mobile  agents  should  be  flexible  and  able  to  adapt 
different  circumstances,  because  an  agent  language  must  support  the  execution 
of  flexible  and  safe  software  arriving  from  external  networks.  Although  the 
language  structure  should  be  flexible,  it  must  also  set  limits  for  mobile  agents. 
For  example,  language  should  not  allow  the  mobile  agents  to  do  anything  that 
would  endanger  the  user  computer. 

The  stationary  agent  software  can  be  written  in  C  programming  language. 
The  stationary  agents  in  servers  allow  interaction  with  local  resources  or  services 
such  as  databases.  A  C  program  is  compiled  and  linked  with  libraries  into  a  set 
of  executable  code,  which  runs  only  on  one  particular  hardware  architecture. 
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Executable  code  takes  control  of  the  machine  and  may  have  complete  access  to 
all  system  services. 

The  mobile  agents  can  be  written  in  the  Telescript  and  Java  Languages. 
Telescript  is  the  first  agent  development  language,  is  interpreted,  and  has  a 
security  model  similar  to  that  of  Java.  Telescript  language  features  many 
capabilities  and  desirable  characteristics.  For  example,  any  algorithm  can  be 
expressed  and  an  agent  can  be  programmed  to  make  decisions.  Moreover, 
Telescript  is  safe,  portable,  and  dynamic  so  that  an  agent  can  carry  information 
among  networks. 

Use  of  Java  is  the  most  popular  language  for  the  development  of  mobile 
agents.  Java  is  widespread,  and  the  main  features  of  Java  include  the 
interpretation  of  a  pre-compiled  code  and  class  loading  from  an  external  network 
server.  Mobile  communications  require  that  a  mobile  agent  and  its  state  be 
converted  into  a  suitable  form  for  network  transmissions.  Java’s  object 
serialization  manages  this  conversion  and  reconstructs  the  mobile  agent  at  the 
remote  servers. 

Java  enables  the  migration  of  a  mobile  agent  with  the  help  of  its  class 
loading  mechanism.  The  aim  of  the  migration  process  is  to  reduce  network 
bandwidth  when  multiple  remote  procedure  calls  are  needed  to  execute  an 
application.  Java’s  class  loaders  dynamically  load  the  classes  included  in  an 
application  through  the  network,  and  all  of  these  classes  are  subject  to  security 
restrictions.  These  security  restrictions  help  the  mobile  agent  systems  to  protect 
their  agents  from  unauthorized  access. 

Mobile  agents,  which  are  tightly  integrated  with  the  Web,  can  be 
developed  by  using  Java.  Applets  can  launch  mobile  agents  from  Web  browsers 
and  receive  those  mobile  agents  after  they  complete  their  tasks. 
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5. 


Mobile  Agent  Systems 


Telescript  is  the  first  mobile  agent  system,  and  was  created  by  General 
Magic  for  the  development  of  large  distributed  applications.  Telescript 
technology  allows  automated  and  interactive  access  to  external  network 
computers.  Telescript  technology  supplements  system-programming  languages 
such  as  C  or  C++.  The  stationary  software  in  user  computers  is  written  in  C, 
which  lets  agents  interact  with  users  or  system  resources.  The  main  purpose  of 
Telescript  technology  is  the  electronic  marketplace.  Telescript  opened  the 
commercial  marketplace  for  mobile  agents  and  was  followed  by  many  mobile 
agent  systems,  such  as  Agent  Tcl,  Aglets,  Voyager,  etc. 

Developed  at  Dartmouth  University,  Agent  Tcl  is  one  of  the  earliest 
systems  on  mobile  agents.  The  Agent  Tcl  mobile  agent  system  satisfies  the 
needs  of  mobile  computer  users.  Agent  Tcl  provides  a  Tcl  interpreter,  which  is 
extended  with  support  for  strong  mobility.  It  has  extensive  communication 
services,  security  mechanisms,  and  debugging  and  tracking  tools.  Agent  Tcl 
protects  individual  machines  against  malicious  agents,  and  provides  support  for 
docking  station®,  enhances  communication  between  agents,  and  minimizes 
wireless  connection  time. 

The  Aglet  model  was  developed  at  the  IBM  Tokyo  Research  lab.  The 
term  aglet  is  word  combining  agent  and  applet.  Aglet  is  the  most  widespread 
mobile  agent  system  extending  Java  with  support  for  weak  mobility  and  it  is 
available  free.  An  aglet  is  a  mobile  Java  object.  It  runs  In  its  own  thread  of 
execution  after  arriving  at  an  external  network  server. 

The  mobility  of  Aglets  is  classified  in  two  ways,  active  and  passive.  An 
active  aglet  sends  itself  from  its  current  location  to  a  remote  server,  and  a 

®  Docking  system  lets  an  agent  jump  off  a  connected  computer  such  as  laptop  and  return  later. 
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passive  aglet  is  pulled  away  by  a  remote  server.  An  aglet  can  go  to  sleep 
temporarily  and  release  Its  resources.  This  feature  of  an  aglet  helps  to  minimize 
the  user  computer’s  power  consumption.  Multiple  aglets  may  exchange 
information  to  achieve  a  given  task  by  the  user.  Yet,  another  advantage  of  the 
aglet  is  that  it  is  easy  to  learn  to  use. 

TACOMA  is  a  joint  project  between  Cornell  University,  USA,  and  Tromso 
University,  Norway.  In  TACOMA,  Tcl  language  is  extended  to  include  primitives 
that  support  weak  mobility.  TACOMA  addresses  the  security  and  reliability 
issues  of  mobile  agents.  TACOMA  mainly  addresses  operating  system  aspects 
of  mobile  agents  rather  than  programming  language  aspects.  Agents  that 
execute  units  are  implemented  as  Unix  processes  running  the  Tcl  interpreter. 
The  TACOMA  system  has  been  extended  to  support  many  interpreted 
languages,  such  as  Python,  Scheme,  Perl,  and  C. 

Ara  (Agents  for  Remote  Action),  developed  at  the  University  of 
Kaiserslautern,  is  a  mobile  agent  system  that  runs  on  Unix  machines  to  support 
strong  mobility,  communication,  and  security.  Mobility  is  supported  through 
migration  and  data  space  management.  Ara  started  with  Tcl  and  C/C++ 
implementations,  but  currently  also  supports  Java. 

Mole,  developed  at  Stuttgart  University,  Germany,  in  1 994,  is  one  of  the 
first  mobile  agent  systems  that  was  written  in  Java  language.  Mole  is  a  Java  API 
that  supports  weak  mobility.  Mole  provides  a  stable  environment  for  the 
development  and  usage  of  mobile  agents.  Mole  addresses  agent  termination, 
groups  of  agents,  and  security  for  protecting  mobile  agents  against  malicious 
hosts.  Mole  agents  are  Java  objects  running  as  threads  of  the  Java  Virtual 
Machine. 
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Sumatra  is  a  Java-based  mobile  agent  system  developed  at  the 
University  of  Maryland.  Sumatra  is  an  extension  of  the  Java  programming 
environment  and  supports  adaptive  mobile  programs.  Sumatra  is  based  on  a 
Java  Virtual  Machine,  and  facilitates  the  transparent  migration  of  mobile  agents. 
Mobile  agents  can  suspend  execution,  migrate,  and  resume  execution  at  the 
remote  servers.  Sumatra  provides  support  for  strong  mobility  of  Java  threads 
executed  within  execution  engines.  Threads  can  be  migrated  separately  from 
the  objects  they  need. 

Voyager  was  developed  by  ObjectSpace  and  is  a  software  package  less 
than  300KB  that  supports  mobile  agents.  Voyager  is  a  Java-based  system  for 
developing  distributed  applications  using  mobile  objects  and  agents.  Voyager 
applications  can  be  written  once  and  then  run  on  any  platform  that  supports 
Java.  Voyager  has  remote  method  invocation,  object  request  broker,  and 
support  communication  mechanisms.  These  mechanisms  have  made  Voyager 
widely  used  claiming  robustness  and  good  performance. 

MOA  (Mobile  Objects  and  Agents)  is  a  mobile  agent  system  recently 
developed  at  the  Open  Group  Research  Institute,  and  is  written  in  Java.  MOA 
contributes  to  resource  management  and  transparent  maintenance  of 
communication  channels  across  migration,  it  has  been  designed  to  support 
migration,  communication  and  control  of  agent. 

MASIF  (The  OMG  Mobile  Agent  System  Interoperability  Facility)  was 
developed  by  IBM,  General  magic,  The  Open  Group,  Crystaliz,  and  GMD  Focus 
to  standardize  mobile  agent  system  interoperability.  MASIF  addresses  the 
interfaces  between  agent  systems,  but  does  not  address  the  interfaces  between 
agent  applications  and  the  agent  system.  MASIF  standardizes  interoperability 
between  mobile  agent  systems  by  specifying  agent  management,  transfer,  and 
naming. 
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6. 


Mobile  Agent  Security 


Mobile  agent  security  is  a  critical  issue  for  mobile  users  as  it  is  difficult 
mobile  agents  to  achieve.  Current  security  technology  is  not  good  enough  to 
support  mobile  agents. 

Security  in  mobile  agent  systems  can  be  identified  as: 

•  The  protection  of  a  mobile  agent  from  an  attack  by  another  malicious 
mobile  agent,  (inter-agent  security), 

•  The  protection  of  a  mobile  agent  from  an  attack  by  a  malicious  external 
network  server,  (agent-host  security), 

•  The  protection  of  a  host  from  an  attack  by  malicious  agents,  (security 
between  hosts  and  unauthorized  third  parties), 

•  The  secure  network  transfer  of  agents,  (inter-host  security). 

Existing  cryptographic  technology  can  be  applied  to  provide  inter-agent 
security,  inter-host  security,  and  security  between  hosts  and  unauthorized  third 
parties.  However,  mobile  agent-host  security  is  specific  to  mobile  code  systems. 

Hosts  need  to  be  protected  against  malicious  mobile  agents  and  mobile 
agents.  The  protection  of  hosts  against  malicious  mobile  agents  can  be 
managed  by  using  the  Sandbox  security  model.  The  Sandbox  security  model 
decides  which  programs  can  use  system  resources  and  which  may  not  via 
special  control  components.  The  protection  of  mobile  agents  against  malicious 
hosts  is  specific  to  mobile  agents  and  is  an  open  area  of  research. 

a.  Protecting  the  Host 

The  host  can  be  protected  against  malicious  mobile  agents  by 
using  authentication,  authorization,  and  enforcement.  The  host  should  be  able  to 
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authenticate  the  owner  of  the  mobile  agent,  and  assign  resource  limits  based  on 
this  authentication  in  order  to  prevent  itself  from  denlal-of-service  attacks,  theft, 
or  damage  to  sensitive  information. 

Authentication  verifies  and  authenticates  the  identity  of  the  owner  of 
a  mobile  agent  with  public-key  cryptography.  Each  owner  and  its  host  has  a 
public-private  key  pair.  The  host  can  authenticate  the  agent’s  owner  if  the  mobile 
agent  is  digitally  signed  with  the  owner’s  public  key.  Or,  if  the  mobile  agent  is 
digitally  signed  with  the  sending  machine’s  key,  the  host  will  trust  the  sending 
machine. 


After  the  identification  of  an  agent’s  owner,  the  system  assigns 
access  restrictions  to  the  mobile  agents  In  a  process  called  authorization.  Then, 
the  system  ensures  that  the  mobile  agent  does  not  violate  these  restrictions  in 
the  step  known  as  enforcement.  Authorization  and  enforcement  assign  resource 
limits  to  the  mobile  agent  and  enforce  those  resource  limits.  Resource  limits 
include  access  rights,  (i.e.,  reading  a  certain  file,  and  maximum  consumptions, 
i.e.,  total  CPU  time). 


b.  Protecting  Mobile  Agent 

Protecting  a  mobile  agent  against  a  malicious  host  is  a  difficult 
security  problem.  There  is  no  way  to  prevent  a  malicious  host  from  examining  or 
modifying  any  part  of  the  mobile  agents  visiting  the  mobile  host.  The  key 
challenge  is  to  prevent  the  malicious  host  from  using  stolen  information,  and  to 
detect  tampering  as  soon  as  the  mobile  agent  migrates  onto  the  next  host. 
There  is  no  single  mechanism  that  can  solve  this  problem. 

Currently,  five-research  directions  exist  for  protecting  mobile  agents 
against  malicious  hosts: 
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(1)  The  trust/reputation  approach.  The  trust/reputation  approach 
allows  mobile  agents  to  transport  themselves  only  to  trusted  hosts.  Trust  is  a 
relationship  between  a  mobile  agent  and  a  host.  In  this  manner,  a  mobile  agent 
knows  that  the  host  will  not  attack. 

(2)  The  organizational  approach.  The  organizational  approach 
resolves  the  security  problems  by  allowing  only  trusted  parties  to  run  mobile 
agents,  and  only  trusted  parties  can  operate  mobile  agents. 

(3)  The  manipulation  detection  approach.  The  manipulation 
detection  approach  provides  mechanisms  to  detect  manipulations  of  the  mobile 
agent  code,  enabling  a  mobile  agent  to  detect  and  prove  modification  attacks. 

(4)  The  Blackbox  protection  approach.  The  Blackbox  protection 
approach  attempts  to  generate  a  “black  box”  around  the  mobile  agent  that 
protects  the  mobile  agent  from  read  or  manipulation  attacks  for  a  certain  time 
interval.  The  mobile  agent  is  considered  a  “blackbox,”  if  the  mobile  agent’s  code 
and  data  cannot  be  read  or  modified.  Only  input  to  and  output  from  the  blackbox 
can  be  observed.  If  an  agent  completes  the  blackbox  profile,  the  host  cannot 
interfere  with  its  execution  in  a  directed  way.  Thus,  an  agent  can  be  protected 
from  host  attacks.  Currently,  there  is  no  known  algorithm  to  fully  provide 
blackbox  protection. 

(5)  Mobile  Cryptography  approach.  The  Mobile  Cryptography 
approach  described  by  Sander  and  Tschudin  [Ref.  49],  uses  encrypted  programs 
to  protect  mobile  agents  from  malicious  hosts.  Encrypted  programs  consist  of 
operations  that  work  on  encrypted  data.  Malicious  host  cannot  read  or 
manipulate  the  mobile  agent’s  original  data  unless  it  can  break  the  data’s 
encryption.  The  Mobile  Cryptography  approach  has  some  advantages,  such  as 
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the  protection  of  the  mobile  agent  is  easily  provable,  the  protection  is  not  time- 
limited  unlike  blackbox  approach,  and  the  cost  of  the  protection  is  small. 


All  of  these  approaches  are  ongoing.  None  of  them  is  used  in  real- 
world  applications. 
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V. 


USING  MOBILE  AGENTS  IN  MILITARY  APPLICATIONS 


Mobile  agent  technology  leads  to  a  new  model  of  computing  consisting  of 
agents  that  are  user  enabled,  embedded  in  an  environment,  dynamic  in  their 
behaviors,  and  able  to  improve  their  behaviors  over  time. 

intelligent  agents  are  critical  force  multipliers  for  the  military.  Military 
personnel  can  simply  manage  difficult  tasks  with  the  help  of  the  intelligent 
agents.  Intelligent  agents  increase  the  productivity  of  military  personnel  by 
getting  needed  information,  taking  the  action  on  the  user’s  behalf,  and  deciding 
how  to  solve  simple  problems  in  a  very  short  period  of  time. 

This  chapter  introduces  and  defines  some  of  the  military  projects  that  use 
mobile  agents.  The  following  projects  represent  the  usage  of  mobile  agents  in 
military  applications: 


1.  Project  Name:  Battlefield  Intelligence  Agents. 

Lockheed  Martin  (DARPA ITO  sponsored  Research). 

http://www.atl.external.lmco.com/projects/dais 

This  project  develops  and  tests  innovative  uses  of  intelligent  agent 
technology  to  facilitate  intelligence  collection  and  analysis  in  battles.  The 
resulting  technical  developments  of  this  project  are  expected  to  enable  military 
intelligence  units  to  exploit  the  rapidly  expanding  battlefield  information  sphere 
and  demonstrate  the  viability  of  agent-based  systems  as  intelligent  middleware  in 
distributed  systems. 
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Wide  Area  Network  (WAN)  contains  battlefield  intelligence 
collectors,  commanders,  and  data  analysts.  The  objective  of  the  project  is  to 
develop  an  intelligent  agent  system  capable  of  locating  and  retrieving  critical 
information  in  time  to  affect  a  battle.  Mobile  agents  are  used  for  data  discovery 
within  the  wide  area  network. 

Mobile  users  can  connect  to  the  battlefield  is  wide  area  network  by 
using  hand-held  computers  and  radio  links.  Data  of  interest  can  reach  a  mobile 
user  in  minutes  from  its  initial  entry  point  with  the  help  of  the  mobile  agents. 
These  capabilities  allow  highly  mobile  units  such  as  counter  intelligence  teams  to 
gain  access  to  the  information  resources  of  the  WAN,  and  enable  them  to  launch 
a  mobile  agent  onto  the  network,  disconnect  and  relocate,  then  reconnect  to  find 
the  agent  waiting  with  its  task  results. 


2.  Project  Name:  Interaction  Society  Collaborative  Agents. 

Honeywell  Technology  Center  (DARPA ITO  Sponsored  Research) 

http://www.  htc.  honeywell.com/projects/hci 

The  goal  of  the  project  is  to  design  and  develop  an  architecture  of 
software  agents  able  to  collaborate  with  human  users  for  the  performance  of 
demanding  and  time-critical  tasks.  The  approach  to  the  development  of  the 
Interaction  Society  involves  the  creation  of  a  new  scalable  protocol,  involving  the 
organization  of  reactive  agents  into  social  groups  to  constraint  their  behavior. 
This  new  protocol  is  embodied  in  the  Search  and  Rescue  Assistant  System 
(SARA)  and  demonstrated  in  the  military  Search  and  Rescue  (SAR)  domain. 

SARA  supports  military  search  and  rescue  operations  by  providing 
mixed  initiative  task  assistance  and  situation  awareness  to  search  and  rescue 
center  operators.  Reactive  software  agents  that  bound  into  societies  to  organize 
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their  behaviors  act  as  collaborative  partners  with  humans  in  information  intensive 
tasks.  Agents  generate,  manage,  and  create  data  visualizations,  interfaces,  and 
information  to  simplify  human-computer  interactions. 


3.  Project  Name:  Execution  Monitoring  Tool 

http://www.darpa.mil/iso/jlactd/execumon.htm 

The  Execution  Monitoring  Tool  provides  pro-active  assistants  for 
tracking  assets  and  an  automated  alert  notification  via  electronic  mail,  cellular 
phone,  pager,  etc.  Intelligent  agents  are  employed  to  search  for  data  in 
disparate  databases  in  a  manner  that  is  transparent  to  the  user. 

The  Execution  Monitoring  Tool  allows  a  mobile  user  to  create  a  list 
of  the  most  critical  items  with  which  he  is  concerned.  The  intelligent  agent 
searches  for  those  items,  gains  knowledge  about  their  location,  status,  and 
arrival  times,  and  notifies  the  mobile  user.  The  user  can  log  onto  a  web  page  to 
check  the  status,  or  simply  to  have  the  agent  e-mail,  page,  or  call  the  user  to 
inform. 

4.  Project  Name:  LCS  Marine 

(DARPA  ITO  Sponsored  Research) 

http://www.atl.external.lmco.com/projects/LCS-Marine/index.html 

LCS  Marine  team  is  developing  a  prototype  system  that  will  enable 
computational  entities  to  listen  for  information  requests,  compute  user-centered 
solutions,  and  show  tailored  visualizations  to  individual  war  fighters  in  their 
operational  domains.  LCS  technology  will  be  integrated  with  intelligent  agent 
technologies  to  revolutionize  the  way  computers  are  used  on  the  battlefield. 
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In  the  LCS  Marine  environment,  individuals  will  explicitly  define 
their  information  needs  through  an  interactive  dialogue  with  their  local  computing 
device.  Spoken  Language  Systems  software  and  intelligent  agents  will  interact 
to  identify  the  explicit  and  implicit  tasks  required.  The  mobile  agents  interact  with 
specific  information  servers  over  tactical  communication  links  to  retrieve  the 
required  information. 


5.  Project  Name:  Mobile  Agents  for  Network  Trust  (MANET) 

(DARPA ITO  Sponsored  Research) 
http://www.opengroup.org/RI/darpa/1997/f255Summ.html 

The  developers  of  the  MANET  project  are  developing  a  novel  trust 
and  authorization  model,  distributed  infrastructure,  and  tools  for  responding  to 
intrusions  and  attacks  in  a  system  of  systems  environment  such  as  the  Internet. 
The  major  components  of  the  project  are  a  trust  model,  an  implementation  of  the 
model  for  mobile  agents,  and  demonstration  that  the  resulting  infrastructure  can 
respond  to  intrusions  and  attacks. 

Mobile  code  is  fundamental  to  attack  detection  and  response  in  a 
system  of  systems  environment,  because  it  is  impossible  to  predict  the  nature  of 
future  attacks.  Mobile  agents  support  adaptability  in  responding  to  attacks  by 
allowing  decisions  about  mobile  code  usage  to  be  made  at  the  point  of  use.  The 
implementation  of  their  trust  model  for  mobile  agents  will  be  based  on  public  key 
cryptography,  innovative  concepts  of  group  membership,  and  ongoing  work  on 
the  Adage  authorization  system. 
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6.  Project  Name:  Foundations  and  Support  for  Survivable  Systems 
(Cornell  University)  (DARPA  ITO  Sponsored  Research) 
http://www,cs.cornell.edu/lnfo/People/fbs/Arpa.DIW96.smry.html 

In  this  project,  researchers  are  seeking  to  develop  technology  to 
support  survivable  critical  infrastructure  systems  with  the  following  techniques: 
leveraging  formal  methods,  investigating  how  cryptographic  abstractions  can  be 
used  in  implementing  fault-tolerance,  and  exploring  the  use  of  mobile  code. 

The  researchers  are  investigating  the  agent  paradigm  for  use  in 
critical  infrastructure  systems.  They  are  specifically  augmenting  their  TACOMA 
system  so  that  its  agents  can  be  fault-tolerant  and  immune  to  various  attacks.  In 
this  project,  mobile  agents  are  used  to  structure  a  critical  infrastructure  system. 
A  mobile  agent  facilitates  maintaining  site  integrity  by  narrowing  the  interface 
between  a  computation  and  the  sites  visited. 


7.  Project  Name:  Quality-Based  Reliable  Computing  (QBRC) 

(DARPA  ITO  Sponsored  Research) 
http://www.crhc.uiuc.edu/PERFORM/QBRC.html 

Military  applications  require  highly  reliable  information  technology. 
This  project  will  develop  an  approach  to  performing  rapid  diagnoses  and 
recovery,  and  modeling  and  analysis  tools  that  check  whether  the  desired 
qualities  are  present  to  insure  high  quality  information.  The  key  to  their  approach 
is  the  use  of  a  unifying  measure  for  the  quality  of  Information  presented  to  a 
decision  maker  as  a  measure  of  that  information’s  dependability.  In  this  project, 
active  monitoring  is  employed  to  measure  the  quality  of  information  presented  to 
a  decision  maker,  and  guide  system  reconfiguration  when  the  quality  of  the 
information  presented  becomes  unacceptable. 
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Intelligent  agents  provide  system  monitoring  by  maintaining  a 
current  picture  of  system  assets  (data,  software,  and  hardware)  and  their 
associated  qualities.  Intelligent  agent  architecture  is  scalable  across  both  the 
distributed  heterogeneous  network  and  monitoring  granularity.  The  researchers 
are  developing  three  types  of  agents:  system-mapping  agents,  base  -quality- 
collection  agents,  and  intrusion  and  fault  detection  agents.  System  mapping 
agents  determine  the  network  topology,  hardware,  software,  and  data 
configuration  of  the  distributed  heterogeneous  network.  Base-quality-collection 
agents  assess  the  current  quality  state  of  the  system  assets  while  the  Intrusion 
and  fault  detection  agents  monitor  the  system  and  alert  the  Quality  Propagation 
Specification  (QPS)  of  any  detected  faults  or  intrusions. 
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VI.  CONCLUSIONS  &  RECOMMENDATIONS 


1.  Conclusion: 

There  is  an  increased  interest  in  mobile  computing  because  of  the  growth 
in  cellular  communications.  Mobile  computers  that  easily  connect  to  the  Internet 
are  becoming  indispensable  tools  for  a  broad  spectrum  of  society.  Today,  not 
only  high-end  computer  users  but  also  lay  people  use  mobile  computers  for  their 
daily  tasks.  Mobile  users  need  to  use  their  computers  while  traveling  or  while 
they  are  away  from  their  working  environments. 

Mobile  computing  allows  computer  users  to  take  their  mobile  computing 
devices  such  as  laptops,  palmtops,  personal  digital  assistants,  and  other  portable 
computers,  away  from  their  workplaces  and  to  use  them  while  traveling.  Mobile 
computing  gives  users  the  opportunity  to  work  with  web  servers  and  other 
network  resources  via  wireless  communication  links  from  almost  anywhere  on 
the  world.  Mobile  agents  provide  additional  support  by  enabling  movement  of  the 
programming  environment  along  with  the  mobile  computer. 

As  technology  evolves,  there  will  be  more  support  for  mobility  in  the 
underlying  infrastructure  of  mobile  Computing  environment,  which  makes  mobility 
easier  to  deploy.  For  example,  cellular  phone  services  provide  increased  support 
for  mobile  computing. 

Recommendation: 

Mobile  computers  communicate  with  network  servers  over  wireless 
communication  links  that  are  slow  and  unreliable.  The  communication  between  a 
mobile  computer  and  a  network  server  via  a  wireless  link  should  proceed  as  if 
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there  had  been  no  mobility.  The  infrastructure  of  the  mobile  computing 
environment  should  support  the  movement  of  mobile  computers  from  one 
location  to  another.  For  example,  mobile  computers  can  be  reconnected  to  a 
network  sen/er  at  a  new  location,  and  mobile  agents  can  continue  to 
communicate  as  they  navigate  on  the  Internet.  Mobile  agents  can  move  to 
external  networks  very  far  away  from  the  mobile  computer  in  order  to  complete 
the  mobile  user’s  tasks.  Therefore,  the  infrastructure  of  mobile  computing 
environment  should  address  performance,  scalability,  and  reliability  issues. 


2.  Conclusion: 

Security  Is  a  critical  issue  and  one  of  the  biggest  challenges  facing  mobile 
computer  users.  The  existing  security  infrastructure  is  designed  to  protect 
stationary  computers.  Stationary  computing  systems  such  as  network  servers 
are  more  secure  than  mobile  computing  systems.  Stationary  computers  can  be 
protected  by  firewalls;  however,  mobile  computers  are  much  more  difficult  to 
protect. 

In  today’s  world  of  computing,  mobile  computers  are  vulnerable  to  attacks 
such  as  denial  of  service,  T rojan  horses,  and  viruses.  For  example,  it  is  relatively 
easy  to  access  data  sent  from  a  mobile  computer  and  thus  violate  the  integrity  of 
a  mobile  agent  by  modifying  its  code  or  data  while  that  agent  is  visiting  a  remote 
network  resource. 

Recommendation: 

When  a  mobile  computer  restarts  at  a  new  location,  the  mobile  computer’s 
identity  should  be  verified  as  some  external  network  servers  will  need  to  trust  the 
mobile  computer’s  identity  before  communication  can  be  established. 
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Mobile  users  do  not  trust  foreign  computers  or  mobile  agents.  Mobile 
users  are  often  reluctant  to  provide  foreign  mobile  agents  access  to  local 
resources.  If  remote  access  Is  forbidden  because  of  security  concerns,  a 
combination  of  mobile  agents  and  controlled  local  access  can  be  acceptable 
solution.  On  the  other  hand,  it  could  be  more  difficult  to  attack  a  mobile  agent 
because  its  location  is  not  always  known. 

Security  is  hard  to  achieve  for  mobile  agents,  as  current  security 
technology  is  not  strong  enough  to  support  mobile  agents.  Secure 
communication  over  nonsecure  channels  can  be  accomplished  by  encryption, 
which  can  be  done  in  software  or  hardware.  Existing  cryptographic  technology 
can  be  applied  to  provide  inter-agent  security,  inter-host  security,  and  security 
between  hosts  and  third  parties.  The  protection  of  hosts  against  malicious 
mobile  agents  can  be  managed  by  using  authentication,  authorization,  and 
enforcement.  The  protection  of  mobile  agents  against  malicious  hosts  is  hard  to 
ensure  and  is  currently  an  open  area  of  research. 


3.  Conclusion: 

Mobile  users  need  to  be  able  to  communicate  with  larger  and  more 
powerful  machines  via  wireless  LANs  or  cellular  phones  for  optimal  use  of  mobile 
computing  systems.  The  designers  of  mobile  computing  systems  must  take  into 
account  the  drawbacks  of  global  communication  such  as  propagation  delay. 

One  constraint  imposed  by  global  computing  is  propagation  delay.  Wide 
area  networks  suffer  from  the  problem  of  propagation-delay.  If  a  program  makes 
frequent  use  of  remote  data,  its  performance  will  suffer  because  of  propagation 
delays.  This  problem  may  not  be  resolved  anytime  soon. 
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Recommendation: 


Process  migration  can  help  alleviate  propagation  delay.  In  process 
migration,  the  mobile  user’s  program  is  moved  closer  to  the  data  of  interest. 
First,  a  program  starts  running  on  the  user’s  mobile  computer.  If  the  running 
program  later  needs  to  make  frequent  accesses  to  remote  data,  the  mobile 
user’s  program  is  moved  to  a  stationary  computer,  which  is  physically  closer  to 
the  data.  This  method  of  process  migration  reduces  the  propagation  delay.  At 
the  end  of  the  program  execution,  the  mobile  user’s  program  returns  to  his 
computer  to  display  results.  Finally,  a  program  may  complete  its  tasks  while 
minimizing  communication  costs  with  the  help  of  process  migration. 


4.  Conclusion: 

The  World  Wide  Web  is  one  of  the  most  highly  utilized  applications  in 
mobile  computing,  and  the  mobile  user  wants  to  access  and  use  the  Web  at  high 
speeds.  The  mobile  user  can  access  the  Web  easily  over  wireless  links,  but 
more  slowly  than  over  wired  links.  Wireless  communication  links  are  slow 
compared  to  wired  links. 

Recommendation: 

Caching  plays  a  key  role  In  mobile  computing  when  the  overhead  of  using 
the  wireless  link  increases.  Effective  caching  can  significantly  reduce  wireless 
link  traffic.  Mobile  users  can  access  data  more  quickly  if  it  is  cached,  because 
mobile  users  perform  read  operations  locally.  Caching  of  data  in  a  mobile 
computer  minimizes  the  need  for  message  transmission  of  data  and  Improves 
the  mobile  computer’s  performance  and  the  availability  of  services. 
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5.  Conclusion: 

Mobile  computers  do  not  have  continuous  network  connection  and  they 
are  often  disconnected  for  long  periods.  Wireless  network  connections  are  often 
prone  to  sudden  failures.  The  mobile  computer  can  cease  to  function  during  the 
loss  of  one  or  more  network  connections.  Frequent  disconnections  on  wireless 
communication  links  are  very  common,  so  these  connection  failures  are  of  great 
concern  in  mobile  computing. 

Recommendation: 

The  more  autonomous  a  mobile  computer,  the  better  it  can  tolerate  the 
loss  of  network  connections.  It  is  important  for  a  mobile  computing  device  to 
operate  as  a  stand-alone  computer  in  environments  with  frequent 
disconnections,  because  the  mobile  computing  device  can  reduce  wireless 
communication  by  running  applications  locally,  rather  than  splitting  the 
application  across  the  wireless  network. 

Loss  of  network  connections  can  be  hidden  by  operating  asynchronously, 
and  using  caching  and  delayed  write  techniques.  In  asynchronous  operation,  the 
mobile  user  sends  multiple  requests  before  asking  for  acknowledgement  rather 
than  waiting  for  a  reply  after  each  request.  It  is  important  to  cache  whole  files  on 
the  mobile  computer  so  that  the  entire  file  can  be  read  locally  during  a  network 
disconnection.  These  techniques  reduce  wireless  communication  and  mask 
some  network  failures.  Not  all  network  disconnections  can  be  masked;  however, 
good  user  interfaces  can  provide  some  feedback  about  which  operations  are 
unavailable  due  to  network  disconnections. 

In  addition  to  the  techniques  listed  above,  mobile  agents  can  also  assist 
mobile  computers  while  they  are  experiencing  unexpected  network 
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disconnections.  A  mobile  agent  can  move  from  one  computer  to  another, 
suspend  its  execution  at  any  point,  transport  itself  to  a  new  computer,  and  restart 
execution  on  the  new  computer.  When  its  tasks  are  finished,  a  mobile  agent 
returns  to  its  starting  point  and  displays  the  results.  Consequently,  the  mobile 
user’s  tasks  can  continue  even  if  the  mobile  computer  experiences  a  loss  of 
network  connection. 


6.  Conclusion: 

Weak  flow  of  information  over  wireless  links  is  one  of  the  major  constraints 
of  mobile  computing.  Mobile  users  that  have  access  their  data  on  a  low 
bandwidth  wireless  network  experience  weak  data  flow,  and  high  error  rates. 
Therefore,  low  bandwidth  on  wireless  links  is  one  of  the  key  concerns  with  mobile 
computing. 

Recommendation: 

Mobile  computing  designs  should  place  more  emphasis  on  communication 
bandwidth  constraints  than  on  stationary  computing  designs  because  wireless 
communication  links  provide  lower  bandwidth  than  wired  links. 

Wireless  communication  bandwidth  is  divided  among  mobile  users  sharing 
the  same  cell.  The  usable  bandwidth  for  each  mobile  user  depends  on  the  size 
and  distribution  of  the  mobile  user  population.  More  wireless  cells  can  be 
installed  to  sen/ice  mobile  users  thereby  improving  network  capacity. 

System  performance  can  be  improved  by  scheduling  communication  using 
techniques  such  as  differencing,  delayed  write  mechanism,  data  allocation,  data 
compression,  and  data  scheduling.  Use  of  scheduling  techniques  help  cope  with 
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the  low  bandwidth,  and  while  they  do  not  increase  low  bandwidth,  they  improve 
user  satisfaction. 


7.  Conclusion: 

Weak  energy  autonomy  due  to  the  limited  battery  power  of  mobile 
computing  device  is  one  of  the  major  constraints  of  mobile  computing.  Battery 
weight  is  important  for  mobility  because  mobile  users  may  have  to  carry  spare 
batteries  or  recharge  them  frequently.  Small  batteries  are  easy  to  carry,  but  they 
can  undermine  mobility,  because  they  provide  less  power.  Therefore,  power 
consumption  of  mobile  computing  device  becomes  a  very  important  issue. 
Minimizing  power  consumption  can  improve  mobility  by  reducing  battery  weight. 

Recommendation: 

Power  consumption  can  be  minimized  by  using  faster  processors,  trading- 
off  more  sending  messages  for  listening,  or  using  power  management  software 
programs. 

In  order  to  retain  more  power  in  the  battery,  processors  that  can  process 
at  higher  frequencies  can  be  used  to  perform  more  work  on  each  clock  cycle. 

Power  can  also  be  conserved  by  the  efficient  operation  of  both  the  user 
and  the  computer  itself.  Some  power  management  software  programs  can 
control  the  mobile  computer’s  management  of  auto  connect  and  auto  disconnect 
operations  over  wireless  links.  Some  software  programs  can  turn  off  screen 
lighting  when  not  in  use  for  a  period.  Further  research  can  be  done  on  screen 
lighting,  because  mobile  computer  screens  consume  a  large  amount  of  battery 
power. 
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Wireless  transmission  requires  more  power  than  wireless  reception. 
Therefore,  trading  sending  messages  for  more  listening  can  also  save  battery 
power. 


8.  Conclusion: 

Mobile  computers  have  a  higher  risk  of  physical  damage,  loss,  theft,  and 
unauthorized  access.  These  constraints  may  lead  to  a  partial  or  total  loss  of  the 
mobile  user’s  data  and/or  privacy. 

Recommendation: 

The  following  recommendations  can  reduce  the  risks  related  with  mobile 
computer  use  mentioned  above: 

•  The  risks  can  be  reduced  by  minimizing  the  storage  of  essential  data 
on  the  mobile  computer.  A  mobile  computer  should  serve  only  as  a 
portable  computing  device  in  order  to  reduce  the  probability  of  data 
loss. 

•  Important  data  stored  on  disks  and  removable  memory  cards  can  be 
encrypted  to  help  prevent  unauthorized  access.  An  authentication 
system  can  be  used  to  login  to  the  mobile  computer. 

•  In  order  to  prevent  data  loss,  mobile  user  can  keep  a  copy  of  data  that 
does  not  reside  on  the  mobile  computer.  One  solution  could  be  to 
have  backup  copies  of  important  files. 


120 


•  In  the  case  of  mobile  computer  theft,  a  special  software  system  that 
resides  on  the  mobile  computer  can  help  locating  the  mobile  computer 
with  the  help  of  the  Global  Positioning  System  (GPS).  GPS  can  locate 
the  mobile  computer’s  position  with  the  help  of  the  satellites. 


9.  Conclusion: 

Mobile  agents  do  not  directly  reduce  wireless  communication  costs 
because  they  do  not  increase  low  wireless  communication  bandwidth.  Mobile 
agents  minimize  substantial  wireless  communication  costs  by  providing  two  types 
of  reductions,  the  amount  of  data  flow  over  the  slow  wireless  network  and  the 
number  of  interactions  between  entities  residing  at  external  network  computers. 

Recommendation: 

Mobile  agent  can  minimize  the  amount  of  data  transferred  from  the 
external  network  servers  to  the  mobile  computer  by  carrying  a  special  code  that 
provides  data  filtering.  Mobile  agents  can  execute  data  filtering  processes  on  the 
external  computers  before  the  data  is  sent  over  the  wireless  network  to  the 
mobile  computer.  Consequently,  excess  data  flow  on  the  wireless  link  can  be 
minimized  with  the  help  of  mobile  agents. 

A  reduction  in  the  number  of  interactions  between  programs  residing  at 
external  network  computers  can  be  achieved  by  bringing  two  programs  to  the 
same  computing  environment.  Mobile  agents  are  able  to  move  the  user’s 
processes  to  remote  computers,  and  can  also  move  the  data  residing  at  the 
remote  computer  to  the  mobile  computer.  Consequently,  the  amount  of  data 
transferred  over  wireless  links  can  be  reduced  with  the  help  of  mobile  agents. 
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10.  Conclusion: 


A  computer  network  may  fail  while  a  mobile  agent  is  executing  its  owner’s 
tasks  on  that  network.  When  a  network  failure  occurs,  or  a  network  completely 
goes  down,  mobile  agents  on  that  network  are  lost  and  cannot  continue  to 
execute  objects.  If  a  mobile  agent  is  lost,  the  user’s  tasks  cannot  continue. 
Therefore,  mobile  agent’s  tasks  must  be  saved  in  the  case  of  a  network  failure. 

Recommendation: 

One  solution  to  prevent  the  loss  of  mobile  agents  would  be  to  create 
another  mobile  agent  at  the  previous  visiting  network  computer  capable  of 
managing  the  same  tasks  whenever  the  original  mobile  agent  moves  to  a  new 
network  computer.  This  method  can  save  mobile  agent  tasks  in  the  case  of  a 
network  failure.  The  mobile  agent  can  continue  to  manage  its  tasks  by  restarting 
at  the  previous  network  computer.  However,  implementing  this  method  is 
complex  and  hard  to  achieve. 

An  alternative  solution  would  be  for  the  mobile  agent  to  create  checkpoints 
in  order  to  record  its  states  during  execution.  Checkpoints  could  be  saved  at  the 
computer,  which  is  on  the  other  network.  Later,  checkpoints  could  be  used  to 
restore  the  mobile  agent  and  its  internal  state. 
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APPENDIX  A.  GLOSSARY  OF  TERMS 


Access  Time:  is  the  time  elapsed  from  the  moment  a  client  submits  a  query  to 
the  receipt  of  the  data  of  his  interest  on  the  broadcast  channel.  [Ref.  10] 

Agent:  1.  A  program  specifically  designated  to  interact  with  a  server  and 
access  data  on  the  user’s  behalf.  2.  An  automatic  program  that  is  designated  to 
operate  on  the  user’s  behalf  performs  a  specific  function  in  the  background. 
When  the  agent  has  achieved  its  goal,  it  reports  to  the  user.  In  the  future,  agents 
may  roam  the  world’s  computer  networks,  looking  for  information,  and  reporting 
only  when  the  information  has  been  retrieved.  [Ref.  31] 

Applet:  In  Java,  a  mini  program  embedded  in  a  web  document  that  when 
downloaded,  is  executed  by  the  browser.  [Ref.  31] 

Application:  Application  is  a  program  that  enables  you  to  do  something  useful 
with  the  computer  such  as  writing  or  accounting  (as  opposed  to  utilities, 
programs  that  help  you  maintain  the  computer).  [Ref.  31] 

Bandwidth:  The  amount  of  data  that  can  be  transmitted  via  a  given 
communications  channel  (such  as  a  computer  network)  in  a  given  unit  of  time 
(generally  one  second).  For  digital  devices,  bandwidth  is  measured  in  bits  per 
second  (bps).  The  bandwidth  of  analog  device  is  measured  in  cycles  per  second 
(cps).  [Ref.  31] 

Cache:  A  buffer  storage  that  contains  frequently  accessed  instructions  and  data; 
it  is  used  to  reduce  access  time.  [Ref.  32] 

Caching:  Storing  instructions  and  data  in  a  cache.  [Ref.  32] 
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CGI:  Common  Gate  Interface.  On  the  World  Wide  Web,  CGI  is  the  protocol  that 
describes  the  standard  method  of  communications  between  a  web  server  and  an 
external  software  application.  CGI  Is  used  by  the  network  as  a  means  of 
handling  the  data  from  one  computer  to  another.  [Ref.  33] 

Compute:  to  perform  a  calculation,  for  example,  to  add,  subtract,  multiply,  or 
divide  numbers.  [Ref.  33] 

E-commerce:  The  use  of  the  Internet  for  business-to-business  and  business-to- 
consumer  transactions.  E-commerce  is  made  possible  by  encryption 
technologies  such  as  SSL.  [Ref.  31] 

Ethernet:  A  local  area  network  hardware,  communication,  and  cabling  standard, 
originally  developed  by  Xerox  Corporation,  that  can  link  up  to  1024  nodes  In  a 
bus  network.  A  high-speed  standard  using  a  base  band  (single  channel) 
communication  technique,  Ethernet  provides  for  a  raw  data  transfer  rate  of  10 
megabits  per  second,  with  actual  throughput  in  the  range  of  2  to  3  megabits  per 
second.  Ethernet  uses  carrier  sense  multiple  access  with  collision  detection 
(CSMA/CD)  techniques  to  prevent  network  failures  when  two  devices  try  to 
access  to  network  at  the  same  time.  [Ref.  3i] 

Fault  Tolerance:  The  capability  of  a  computer  system  to  cope  with  internal 
hardware  and  software  problems  without  interrupting  the  system’s  performance, 
often  by  automatically  bringing  backup  systems  online  when  the  system  detects 
a  failure.  Fault  tolerance  is  indispensable  whenever  computers  are  assigned 
critical  functions,  such  as  guiding  an  aircraft  to  a  safe  landing  or  ensuring  a 
steady  flow  of  medicines  to  a  patient.  Fault  tolerance  is  also  beneficial  for  non- 
critical  applications.  [Ref.  31] 
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Firewall:  In  a  local  area  network  or  on  the  Internet,  hardware  and  software 
through  which  all-incoming  data  must  pass  for  the  purpose  of  verification  and 
authentication.  If  the  security  procedures  were  not  satisfied,  then  unauthorized 
access  would  be  denied.  The  term  comes  from  the  practice  in  the  building 
profession  of  constructing  firewalls  between  apartment  complexes  so  that  if  a  fire 
were  to  start  in  one  block,  it  would  not  easily  spread  to  another.  Firewalls  can 
also  help  system  administrators  to  track  computer  usage  and  alter  the  access  in 
the  event  of  a  security  breach.  They  provide  encryption  where  necessary  and 
can  protect  certain  areas  of  a  network.  [Ref.  33] 

FTP:  File  Transfer  Protocol.  FTP  is  an  Internet  standard  for  the  exchange  of 
files.  FTP  is  a  specific  set  of  rules  that  comprise  a  file  transfer  protocol.  [Ref.  31] 

Granularity:  Granularity  is  the  ability  to  deliver  distinct  digital  data  to  finer  and 
finer  physical  locations  -  ultimately  and  individual  office  or  desk. 

GUI:  Graphical  User  Interface. 

Heterogeneous  Network:  A  computer  network  that  includes  computers  and 
devices  from  several  manufacturers  and  transmits  data  using  more  than  one 
communications  protocol.  [Ref.  31] 

Host:  In  a  computer  network,  a  computer  that  provides  end  users  with  services 
such  as  computation  and  database  access  and  that  may  perform  network  control 
functions.  [Ref.  33] 

HTML:  Hypertext  Markup  Language.  The  universal  codes  used  for  the  World 
Wide  Web  to  instruct  a  Web  browser  how  a  document  is  to  be  managed  and 
displayed,  and  in  particular,  where  the  hypertext  links  will  take  the  user.  [Ref.  33] 
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HTTP:  Hypertext  Transfer  Protocol.  On  the  World  Wide  Web,  HTTP  is  the  file 
transfer  protocol  that  enables  the  user  to  send  and  retrieve  files  across  the 
Internet.  HTTP  allows  the  author  of  a  web  page  to  embed  hyperlinks  to  other 
websites.  [Ref.  33] 

Internet:  An  enormous  and  rapidly  growing  system  of  linked  computer  networks, 
worldwide  in  scope,  which  facilitates  data  communication  services  such  as 
remote  login,  file  transfer,  electronic  mail,  the  World  Wide  Web,  and  newsgroups. 
Relying  on  TCP/IP,  the  Internet  assigns  every  connected  computer  a  unique 
Internet  address,  also  called  an  IP  address,  so  that  any  two  connected 
computers  can  locate  each  other  on  the  network  and  exchange  data.  [Ref.  31] 

Killer  Application:  Industry  jargons  for  a  computer  application  that  suddenly 
becomes  so  wildly  popular  that  it  drives  other  sectors  of  the  industry.  A  killer 
application,  for  example,  is  an  application  that  surpasses  (i.e.,  kills)  its 
competitors.  Examples  are  VisiCalc,  the  original  spreadsheet  program,  and  the 
Web  browser,  which  changed  computing  by  putting  a  graphical  face  on  the 
Internet  and  making  it  simpler  to  use.  [Ref.  35] 

Latency:  In  a  computer  network,  the  amount  of  time  required  for  a  message  to 
travel  from  the  sending  to  the  receiving  computer.  This  is  far  from  instantaneous 
in  a  packer-switching  network,  given  the  fact  that  the  message  must  be  read  and 

passed  on  by  several  routers  before  it  reaches  its  destination  and  results  in  jitter. 
[Ref.  31] 

LAN  (Local  Area  network):  Personal  and  other  computers  within  a  limited  area 
that  are  linked  by  high-performance  cables  so  that  users  can  exchange 
information,  share  peripherals,  and  draw  on  programs  and  data  stored  in  a 
dedicated  computer  called  a  file  server.  Ranging  tremendously  in  size  and 
complexity,  LANs  may  link  only  a  few  personal  computers  to  an  expensive. 
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shared  peripheral,  such  as  a  laser  printer.  More  complex  systems  use  file 
servers  and  allow  users  to  communicate  with  each  other  via  e-mail  to  share 
multi-user  programs  and  to  access  shared  databases.  [Ref.  31] 

Mainframe;  Mainframe  is  a  multi-user  computer  designed  to  meet  computing 
needs  of  a  large  organization.  [Ref.  31] 

Modem:  A  device  that  converts  the  digital  signals  generated  by  the  serial  port  to 
the  modulated  analog  signals  required  for  transmission  over  a  telephone  line, 
and  likewise,  transforms  incoming  analog  signals  to  their  digital  equivalents. 
Modems  come  in  various  speeds  and  use  various  modulation  protocols.  The 
most  recent  standard,  called  V.90  enables  communication  at  56Kbps.  [Ref.  31] 

Object-oriented:  Conforming  to  the  philosophy  of  object-oriented  programming, 
in  which  programs  are  made  up  of  interacting  objects,  which  are  self-contained, 
reusable  program  modules  that  support  a  specific  function.  Every  object  belongs 
to  a  class  of  generalized  objects  that  all  share  the  same  function;  by  means  of 
Inheritance,  objects  within  the  class  can  automatically  take  on  the  class 
functions.  A  programmer  can  quickly  create  a  new  object  by  taking  an  existing 
abstract  object  of  a  certain  class  and  filling  in  specific  data  and  procedures  as 
needed.  [Ref.  31] 

PC:  Abbreviation  for  personal  computer.  In  practice,  this  abbreviation  usually 
refers  to  IBM  or  IBM-compatible  personal  computers,  as  opposed  to 
Macintoshes.  [Ref.  31] 

PDA:  Personal  Digital  Assistant;  a  term  coined  in  1992  by  John  Sculley  (then 
Apple’s  Chairman)  to  describe  hand-held  electronic  computerized  products  that 
can  be  used  to  assist  users  with  telecommunications  and  messaging.  Apple’s 
first  PDA  was  the  Newton  Message  Pad.  The  term  PDA  is  now  used  to  refer  to 
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any  device  capable  of  assisting  its  user  to  become  better  organized  in  terms  of 
administrative  and  telecommunications  tasks.  [Ref.  33] 

Protocol:  A  strict  set  of  rules  that  govern  the  exchange  of  Information  between 
computer  devices.  To  communicate  successfully,  the  communicating  computers 
must  use  the  same  protocol.  [Ref.  33] 

Proxy:  Also  called  proxy  server.  A  program  that  stands  between  an  internal 
network  and  the  external  Internet  intercepts  requests  for  information.  A  proxy  is 
generally  part  of  a  broader  solution  to  internal  network  security  called  a  firewall. 
The  purpose  of  a  proxy  is  to  prevent  external  users  from  directly  accessing 
resources  inside  the  internal  network,  or,  indeed,  knowing  precisely  where  those 
resources  are  located.  The  proxy  intercepts  an  external  request  for  information, 
determines  whether  the  request  can  be  fulfilled,  and  passes  on  the  request  to  an 
interval  server,  the  address  of  which  is  not  disclosed  to  the  external  client.  By 
disguising  the  real  location  of  the  server  that  actually  houses  the  requested 
information,  the  proxy  makes  it  much  more  difficult  for  computer  criminals  to 
exploit  potential  security  holes  in  servers  and  related  applications,  which  might 
enable  them  to  gain  unauthorized  access  to  the  interval  network.  This  protection 
from  outside  attack  comes  at  the  price  of  imposing  inconveniences  including 
configuration  hassles  and  slower  performance  on  internal  users  who  wish  to 
access  the  external  Internet.  [Ref.  31] 

Real-time:  The  immediate  processing  of  Input,  such  as  a  point-of-sale 
transaction  or  a  measurement  performed  by  an  analog  laboratory  device.  The 
computers  that  are  used  in  cars  are  real-time  systems.  [Ref.  3i] 

RPC:  Remote  Procedure  Call. 
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Script:  A  series  of  instructions,  similar  to  a  macro  and  typed  in  plain  text,  that 
tells  a  program  how  to  perform  a  specific  procedure,  such  as  logging  on  to  an  e- 
mail  system.  Some  programs  have  built-in  script  capabilities.  Some  programs 
write  the  script  automatically  by  recording  your  key-strokes  and  command 
choices  as  your  perform  the  procedure.  [Ref.  31] 

Security:  The  protection  of  valuable  assets  stored  on  computer  systems  or 
transmitted  via  computer  networks.  Computer  security  involves  the  following 
conceptually  differentiated  areas: 

•  Authentication  (ensuring  that  users  are  induced  the  persons  they  claim  to  be), 

•  Access  Control  (ensuring  that  users  access  only  those  resources  and 
services  that  they  are  entitled  to  access), 

•  Confidentiality  (ensuring  that  transmitted  or  stored  data  is  not  examined  by 
unauthorized  persons), 

•  Integrity  (ensuring  that  transmitted  or  stored  data  is  not  altered  by 
unauthorized  persons  in  a  way  that  is  not  detectable  by  authorized  persons), 

•  Nonrepudiation  (ensuring  that  qualified  users  are  not  denied  access  to 
services  that  they  legitimately  expect  to  receive,  and  that  originators  of 
messages  cannot  deny  that  they  in  fact  sent  a  given  message.[Ref.  31] 

SQL:  Acronym  for  Structured  Query  Language.  In  database  systems,  an  IBM- 
developed  query  language  that  has  become  the  standard  for  querying  databases 
in  a  client/server  network.  The  four  basic  commands  (SELECT,  UPDATE, 
DELETE,  AND  INSERT)  correspond  to  the  four  basic  functions  of  data 
manipulation  (data  retrieval,  data  modification,  data  deletion,  and  data  insertion, 
respectively).  SQL  queries  approximate  the  structure  of  an  English  natural 
language  query.  [Ref.  31] 

Synchronous:  Occurring  together  thanks  to  regular  pulses  received  by  some 
type  of  timing  device.  [Ref.  3i] 
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TCP:  Transmission  Control  Protocol.  In  TCP/IP,  the  set  of  standards  (protocols) 
that  enables  data  files  to  be  sent  in  ai  reliable,  error-free  way  from  one  computer 
to  anther  across  the  Internet  or  wide  area  network.  The  main  TCP  uses  a 
transmission  method  known  as  PAR  (positive  acknowledgment  with 
retransmission)  whereby  the  computer  that  sends  the  data  will  continue  to  send 
the  files  to  the  specified  destination  until  the  receiver  sends  a  signal  to  the  sender 
to  confirm  that  the  data  was  received  without  error.  [Ref.  33] 

Tuning  time:  is  the  amount  time  spent  by  a  client  listening  to  the  channel. 
[Ref.  10] 

URL:  Uniform  Resource  Locator.  In  the  World  Wide  Web,  the  unique  address  of 
the  Web  site  on  the  Internet.  It  allows  the  web  browser  to  identify  which  file  in 
which  directory  needs  to  be  retrieved  for  the  user.  [Ref.  33] 

Web  Browser:  A  software  program  enables  a  user  to  access  files  from  any 
computer  that  is  connected  to  the  Internet.  [Ref.  33] 

Web  Server:  In  the  World  Wide  Web,  the  software  program  that  receives, 
manages,  and  responds  to  the  requests  for  documents  and  files.  The  requests 
are  structured  using  the  Hypertext  Transfer  Protocol,  and  once  processed,  are 
sent  back  to  the  requesting  software,  which  is  usually  a  browser.  [Ref.  33] 

Workstation:  In  a  local  area  network,  a  desktop  computer  that  runs  application 
programs  and  serves  as  an  access  point  to  the  network.  [Ref.  3i] 
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